Sharing Permission RESTfully with Web-Keys

Conference IIW8 Room/Time: 2/J

Convener: Hans Granqvist

Notes-taker: Anthony Eden

Attendees:

Technology Discussed/Considered: REST

Discussion notes, key understandings, outstanding questions, observations, and, if appropriate to this discussion: action items, next steps:

The main problem trying to be addressed is crypto in authorization. Crypto is considered challenging and causes too many implementation problems.

http://nocrypto.com/wiki

Authorization
 * Resource: http://example.com/foo
 * Operation: GET/POST/PUT/DELETE
 * Assignees: http://tyler.com/ or http://twitter.com/


 * Verifiers http://verifier.com/1234 (not quite sure what this is for)

Side Discussion - Use Cases
 * Data Dominatrix - Authorize a feed of data
 * Hey, Sailor - Public URL but requires “payment”
 * ... - Authorize content not yet created