Skip to content

Update to work with current UMA api Feat/odrl#49

Open
siltn wants to merge 5 commits into
SolidLabResearch:feat/odrlfrom
siltn:feat/odrl
Open

Update to work with current UMA api Feat/odrl#49
siltn wants to merge 5 commits into
SolidLabResearch:feat/odrlfrom
siltn:feat/odrl

Conversation

@siltn

@siltn siltn commented Jul 13, 2026

Copy link
Copy Markdown

No description provided.

@woutslabbinck woutslabbinck left a comment

Copy link
Copy Markdown
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I have some minor comments that do require some changes. Most are due to the documentation that needs some updates to make it more clear

Comment thread controller/src/classes/utils/OdrlAccessRequestService.ts Outdated
Comment thread controller/src/classes/utils/OdrlAccessRequestService.ts
Comment thread documentation/access-requests.md Outdated
Comment thread documentation/access-requests.md Outdated

## Mock policy injection

If no policy matches the target resource, the user interface hides the access request. Run these commands to insert initial policies.

Copy link
Copy Markdown
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Also elaborate quickly for each policy what they do.
I got confused while following the approval flow: why does alice also have append access?

Copy link
Copy Markdown
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This is append since there has to be atleast one policy present and validating read-access after the request is simpler than update

Comment thread documentation/access-requests.md Outdated
```

### Request checking
You can evaluate state machine accuracy after an approval using the ``trustflows-client``.

Copy link
Copy Markdown
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Which version do I have to install? I know this was an issue, so could you give the exact npm install instructions?

Note that I have not tested it since I do currenlty know which version it requires.

Could also be precise in what this code does?
We did this such that alice indeed can now read the resource following the uma request. Without the access, she would've not gotten any access at all.

Copy link
Copy Markdown
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Solved: added

@woutslabbinck woutslabbinck left a comment

Copy link
Copy Markdown
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We are getting close. Could you btw change the known limitations to the bottom of the page? It currently breaks the documentation

Comment thread documentation/access-requests.md Outdated
### Windows (PowerShell)


Give Carol append access to Bob's readme, *(This is append since Alice requests read-permissions later in the demo)*

Copy link
Copy Markdown
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Isn't it Alice you are giving access to?

Copy link
Copy Markdown
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Fixed: Tried to give access to a third actor but this felt more confusing than to just give a different kind of permission. and accidently left the name in


const authFetch = auth.createAuthFetch();

const targetUrl = "http://localhost:3000/bob/README";

Copy link
Copy Markdown
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

If I try this with resource http://localhost:3000/bob/profile, I still get a 200. Even though Alice should not have the right permissions for that.

I think this is due to the server configuration, but this requires some additional testing on why this is possible.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

3 participants