[foaf-protocols] owl:Restrictions in ACL - was Re: ACL Ontology and Discussion
Story Henry
henry.story at bblfish.net
Wed Apr 21 18:49:08 CEST 2010
On 21 Apr 2010, at 16:58, Joe Presbrey wrote:
>> Sadly, I'm going to have to implement the above in the short term though
>> as can't for the life of me see any other way of expressing:
>>
>> if graph <Gx> holds the triple <group> <has_member> <webid> .
>> where <Gx> is found by dereferencing <group>
>> where <group> and <has_member> are defined in the ACL
>> where <webid> is only known at runtime after checking foaf+ssl.
>
> I'm not sure about the Gx dereference at this point. I guess this is
> analogous to multiple groups being defined in the same graph and
> distinguished by fragment. Are you planning to do this like:
> defrag(group)? Along these lines I think Apache people like
> AuthGroupFile in .htaccess which explicitly declares what "graphs" are
> trusted for authorization. Maybe you aren't counting this as another
> way of expressing, but in SPARQL I would say:
>
> ASK {
> GRAPH <acl> {
> ?acl acl:accessTo <uri>; acl:mode acl:Read; acl:accessClass <group> .
> }
> GRAPH <group> {
> <group> <has_member> <webid> .
> }
> }
yes, a SPARQL query such as the above, if the engine knows to go and dereference the Graph ids,
is close to the N3 rules I was thinking of.
The OWL inferencing is then done inside the graphs such as <group>.
Henry
More information about the foaf-protocols
mailing list