Add missing config files to use Kvin SAIL.

linkedfactory · Jul 17, 2023 · 989e057 · 989e057
1 parent 2b58a22
commit 989e057
Show file tree

Hide file tree

Showing 5 changed files with 75 additions and 15 deletions.
diff --git a/configurations/default.ttl b/configurations/default.ttl
@@ -1,21 +1,33 @@
 @prefix owl: <http://www.w3.org/2002/07/owl#> .
+@prefix rdfs: <http://www.w3.org/2000/01/rdf-schema#> .
 @prefix models: <http://enilink.net/vocab/komma/models#> .
+@prefix acl: <http://www.w3.org/ns/auth/acl#> .
+@prefix user: <enilink:user:> .
+@prefix group: <enilink:group:> .
+@prefix auth: <http://enilink.net/vocab/auth#> .
+@prefix foaf: <http://xmlns.com/foaf/0.1/> .
 
-<> a owl:Ontology ;	owl:imports <platform:/plugin/net.enilink.platform.core/resources/user-admin.ttl> .
+# import definition of administrators group
+<> owl:imports <platform:/plugin/net.enilink.platform.core/config/group-admin.ttl> .
 
-<urn:enilink:data> a models:MemoryModelSet ; 
+# Define default admin user
+user:admin a foaf:Agent ; auth:password "admin" .
+
+# add admin user to administrators group
+group:Administrators foaf:member user:admin .
+
+# allow anonymous users full access to all models
+<enilink:auth:anonymousAll> a acl:Authorization ; acl:agent user:anonymous ;
+                         acl:accessToClass <http://enilink.net/vocab/komma/models#Model> ;
+                         acl:mode acl:Read, acl:Write, acl:Control .
+
+<urn:enilink:data> a models:KvinMemoryModelSet ;
 	models:inference false .
 
-# <urn:enilink:data> a models:PersistentModelSet ; 
-#	models:inference false ; 
+# <urn:enilink:data> a models:PersistentModelSet ;
+#	models:inference false ;
 #	models:repository <workspace:/data/> .
 
-@base <plugin://net.enilink.lift/EnilinkRules/> .
-<> <jaasConfigUrl> <platform:/plugin/net.enilink.platform.core/resources/jaas.conf> ;
-	<loginModule> [ <jaasConfigName> "eniLINK" ; rdfs:label "eniLINK" ] .
-
-# @base <plugin://net.enilink.platform.core/> .
-# <> <jaasConfiguration> [
-#	<url> <platform:/base/enilink-config/jaas.conf> ;
-#	<loginModule> [ <name> "DUMMY" ; rdfs:label "Test" ], [ <name> "OpenID" ; rdfs:label "OpenID" ] 
-# ] .
+@prefix login: <plugin://net.enilink.platform.core/Login/> .
+login: login:jaasConfigUrl <jaas.conf> ;
+	login:loginModule [ login:jaasConfigName "LinkedFactory-POD" ; rdfs:label "LinkedFactory-POD" ] .
diff --git a/configurations/jaas.conf b/configurations/jaas.conf
@@ -0,0 +1,5 @@
+LinkedFactory-POD {
+	org.eclipse.equinox.security.auth.module.ExtensionLoginModule required
+		extensionId="net.enilink.platform.core.EnilinkLoginModule"
+		mode="standalone";
+};
diff --git a/launch/equinox/pom.xml b/launch/equinox/pom.xml
@@ -41,10 +41,10 @@
 						<programArgument>-noExit</programArgument>
 					</programArguments>
 					<vmProperties>
-						<!-- property>
+						<property>
 							<name>net.enilink.config</name>
 							<value>${project.basedir}/../../configurations/default.ttl</value>
-						</property -->
+						</property>
 						<property>
 							<name>org.osgi.service.http.port</name>
 							<value>8080</value>

diff --git a/server/src/main/resources/deploy/jaas-karaf-1.1.0.xml b/server/src/main/resources/deploy/jaas-karaf-1.1.0.xml
@@ -0,0 +1,11 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<blueprint xmlns="http://www.osgi.org/xmlns/blueprint/v1.0.0"
+		   xmlns:jaas="http://karaf.apache.org/xmlns/jaas/v1.1.0">
+	<jaas:config name="LinkedFactory-POD">
+		<jaas:module className="org.eclipse.equinox.security.auth.module.ExtensionLoginModule"
+					 flags="required">
+			extensionId = net.enilink.platform.core.EnilinkLoginModule
+			mode = standalone
+		</jaas:module>
+	</jaas:config>
+</blueprint>
diff --git a/server/src/main/resources/workspace/config.ttl b/server/src/main/resources/workspace/config.ttl
@@ -0,0 +1,32 @@
+@prefix owl: <http://www.w3.org/2002/07/owl#> .
+@prefix rdfs: <http://www.w3.org/2000/01/rdf-schema#> .
+@prefix models: <http://enilink.net/vocab/komma/models#> .
+@prefix acl: <http://www.w3.org/ns/auth/acl#> .
+@prefix user: <enilink:user:> .
+@prefix group: <enilink:group:> .
+@prefix auth: <http://enilink.net/vocab/auth#> .
+@prefix foaf: <http://xmlns.com/foaf/0.1/> .
+
+# import definition of administrators group
+<> owl:imports <platform:/plugin/net.enilink.platform.core/config/group-admin.ttl> .
+
+# Define default admin user
+user:admin a foaf:Agent ; auth:password "admin" .
+
+# add admin user to administrators group
+group:Administrators foaf:member user:admin .
+
+# allow anonymous users full access to all models
+<enilink:auth:anonymousAll> a acl:Authorization ; acl:agent user:anonymous ;
+                         acl:accessToClass <http://enilink.net/vocab/komma/models#Model> ;
+                         acl:mode acl:Read, acl:Write, acl:Control .
+
+<urn:enilink:data> a models:KvinMemoryModelSet ;
+	models:inference false .
+
+# <urn:enilink:data> a models:PersistentModelSet ;
+#	models:inference false ;
+#	models:repository <workspace:/data/> .
+
+@prefix login: <plugin://net.enilink.platform.core/Login/> .
+login: login:loginModule [ login:jaasConfigName "LinkedFactory-POD" ; rdfs:label "LinkedFactory-POD" ] .