Posting an empty graph results in a not-so-empty document, which contains the following line:

@Prefix rdf: http://www.w3.org/1999/02/22-rdf-syntax-ns# .

Probably caused by the raptor lib.

Used when a user wishes to terminate their account.

I am finding that with gold (databox.me) I am getting a strange error on the client side, "I managed to do the patch you wanted in the server, but the statement you wanted to delete doesn't exist in my local store copy." This I suspects points to the store not properly rejecting with 409 a PATCH whose delete fails. This problem does not happen with ldnode. I am using a linked list, and patching things into the list, only to find the link I was going to replace has gone.

(I don't have an isolated test, but the app I was a using was
https://timbl.databox.me/Public/2015/test/index.html
When hthe client JS console "Uncaught TypeError: Cannot read property 'subject' of undefined" this is because in fact the deleted statement was not in the store. New veresions will have a more explicit exception text)

The problem does not happen with ldnode, though it could be that as ldnode does not support websockets it seems there is less asynchronous activity in the app

ACL management UI - maybe as a widget/webapp. (does not really depend on gold)

e.g.:

• JS is treated as text/plain
• CSS is treated as text/x-c++

Accessing the root of a new gold srever using Firefox with tabulator, or

curl -k -H "Accept:text/xml,application/xml,application/xhtml+xml,text/html;q=0.5,text/plain,image/png,/;q=0.1,application/rdf+xml,text/n3,text/turtle

produces a plain HTML table instead of the RDF which should be given, (assuming the resource is primarily a data resource.)

Total number of triples: 4.

The server needs a way to issue certs and create profile documents for new users.

An clear issue right now is how/where to serve the API, since the server does not have a restricted URI namespace for application-specific logic such as the API. Basically what URI will the API have, without actually polluting the data URI namespace. A possible solution to the namespace issue could be the use of the ".well-known" namespace.

A starting point would be to "port" the API from https://github.com/linkeddata/ldphp.

Related to #13.

Simple parser for SPARQL. It doesn't need to actually do anything other than parse the query.

Useful when moving to/from a different server.

Implement code which applies LD-patch patches. More details here [1].

[1] http://www.w3.org/TR/2014/WD-ldpatch-20140918/

Avoid asking for the client certificate when dealing with a public resource.

The code that comes at https://github.com/linkeddata/gold/blob/master/acl.go#L94 should also follow after https://github.com/linkeddata/gold/blob/master/acl.go#L61

linkeddata/warp#8 (comment) mentions that this software provides support for WebDAV. But that significant fact does not seem to be documented anywhere !

Spaces are not urlencoded by default. Should also check generic utf8 support.

A typical RSA key 2048 bit cannot sign the nonces returned using WebID + RSA

PKCS1v15 uses 11 bytes padding and so can have a max message size of 256 - 11 = 245 bytes

Typically the host + nonce string to sign is of length greater than this.

Would it be possible to use a shorter nonce?

openssl rsautl -sign -in tmp -inkey id_rsa.pem -out sig 
RSA operation error
140315110823584:error:0406C06E:rsa routines:RSA_padding_add_PKCS1_type_1:data too large for key size:rsa_pk1.c:73:

Do not parse/serialize graph when a request comes for an RDF resource with Accept: text/turtle. We're already storing triples as turtle, so there's no point parsing the file again.

We are currently using libmagic to set the correct CTypes. Unfortunately it does not handle RDF types, so we currently need to work around it [1]. This is especially bad in case of really big files.

To fix it, we should just remove the dependency on libmagic and use the stuff we already have in mime.go together with a the check for "@Prefix" we do in [1](in case a file extension wasn't detected).

[1] https://github.com/linkeddata/gold/blob/master/server.go#L516

Has this be left there on purpose?

We need to add an API to expose account info, such as available space, default server behavior, etc.

Parser and serializer for JSON-LD.

The ping in the websocket is a special character 0x9/0x10, while in the implementation I saw "ping"/"pong"

Maybe that is already implemented in "golang.org/x/net/websocket" or maybe this is how it is implemented, ping me back

We support many of the methods already, possibly complete the rest via golang.org/x/net/webdav

eg. COPY, MOVE, PROP*

Good: GET http://example.org/,acl returns 401 or 403.

Bad: GET http://example.org/,* returns all triples from both ,meta and ,acl resources.

This is causing a server crash for me when I run gold in the cloud, latest version

It works locally for me tho

I'll investigate further, but would be interested to know if anyone else can replicate this by uploading that triple to a file.

Code available at https://github.com/bradfitz/http2 until it gets merged into golang.

Tim suggested that when a file is locked, a more complex error response should be sent to the client, possibly indicating the other user who locked the file (maybe using RDF in the body of the response?).

Look at HTTP 423 Locked (WebDAV; RFC 4918)

Instead of exposing gold directly to the internet, I want to use NGINX to terminate my SSL connections. The problem is, that when I proxy requests to gold, it thinks that I requested a resource through HTTP and generates wrong resource URLs.

Command to start go server:

go run ~/gopath/src/github.com/linkeddata/gold/server/*.go -http=":8080" -insecure=true -root=/root/jolocom-test-data/ldpc-justas

Nginx host:

server {
        listen 443;
        server_name gold.jolocom.com;

        root html;
        index index.html index.htm;

        ssl on;
        ssl_certificate /etc/nginx/ssl/nginx.crt;
        ssl_certificate_key /etc/nginx/ssl/nginx.key;

        ssl_session_timeout 5m;

        ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
        ssl_ciphers "HIGH:!aNULL:!MD5 or HIGH:!aNULL:!MD5:!3DES";
        ssl_prefer_server_ciphers on;

        location / {
                proxy_pass         http://localhost:8080/;
                proxy_redirect     off;
                proxy_set_header   Host             $host;
                proxy_set_header   X-Real-IP        $remote_addr;
                proxy_set_header   X-Forwarded-For  $proxy_add_x_forwarded_for;
        }
}

Querying a resource (notice http instead of https in subjects):

[  4:39PM ]  [ justas@choedankal:~ ]
 $ curl -k -i -H "Accept: application/n-triples" https://gold.jolocom.com/people/justas  
HTTP/1.1 200 OK
Server: nginx/1.4.6 (Ubuntu)
Date: Mon, 27 Apr 2015 14:39:34 GMT
Content-Type: application/n-triples
Transfer-Encoding: chunked
Connection: keep-alive
Accept-Patch: application/json, application/sparql-update
Accept-Post: text/turtle, application/json
Access-Control-Allow-Credentials: true
Access-Control-Expose-Headers: User, Triples, Location, Link, Vary, Last-Modified, Content-Length
Access-Control-Max-Age: 1728000
Allow: OPTIONS, HEAD, GET, PATCH, POST, PUT, MKCOL, DELETE, COPY, MOVE, LOCK, UNLOCK
Etag: "6c15c714783feae55bea5502670c1a91"
Link: <http://gold.jolocom.com/people/justas/,acl>; rel="acl", <http://gold.jolocom.com/people/justas/,meta>; rel="meta"
Link: <http://www.w3.org/ns/ldp#BasicContainer>; rel="type"
Link: <http://www.w3.org/ns/ldp#Resource>; rel="type"
Link: <http://gold.jolocom.com/people/justas/,meta>; rel="meta"
Ms-Author-Via: DAV, SPARQL
Triples: 33
Updates-Via: wss://gold.jolocom.com/
User: 

<http://gold.jolocom.com/people/justas/.acl> <http://www.w3.org/ns/posix/stat#mtime> "1430143653" .
<http://gold.jolocom.com/people/justas/> <http://www.w3.org/ns/ldp#contains> <http://gold.jolocom.com/people/justas/.ttl> .
<http://gold.jolocom.com/people/justas/> <http://www.w3.org/ns/ldp#contains> <http://gold.jolocom.com/people/justas/card> .
<http://gold.jolocom.com/people/justas/> <http://www.w3.org/ns/ldp#contains> <http://gold.jolocom.com/people/justas/card.acl> .
<http://gold.jolocom.com/people/justas/card.ttl> <http://www.w3.org/ns/posix/stat#mtime> "1430143653" .
<http://gold.jolocom.com/people/justas/> <http://www.w3.org/ns/posix/stat#mtime> "1430143653" .
<http://gold.jolocom.com/people/justas/.acl> <http://www.w3.org/1999/02/22-rdf-syntax-ns#type> <http://www.w3.org/ns/posix/stat#File> .
<http://gold.jolocom.com/people/justas/> <http://www.w3.org/ns/ldp#contains> <http://gold.jolocom.com/people/justas/.acl> .
<http://gold.jolocom.com/people/justas/.acl.ttl> <http://www.w3.org/ns/posix/stat#size> "455" .
<http://gold.jolocom.com/people/justas/card.ttl> <http://www.w3.org/ns/posix/stat#size> "688" .
<http://gold.jolocom.com/people/justas/> <http://www.w3.org/1999/02/22-rdf-syntax-ns#type> <http://www.w3.org/ns/posix/stat#Directory> .
<http://gold.jolocom.com/people/justas/> <http://www.w3.org/1999/02/22-rdf-syntax-ns#type> <http://www.w3.org/ns/ldp#BasicContainer> .
<http://gold.jolocom.com/people/justas/.ttl> <http://www.w3.org/ns/posix/stat#size> "332" .
<http://gold.jolocom.com/people/justas/card.acl.ttl> <http://www.w3.org/ns/posix/stat#mtime> "1430143653" .
<http://gold.jolocom.com/people/justas/card.ttl> <http://www.w3.org/1999/02/22-rdf-syntax-ns#type> <http://www.w3.org/ns/posix/stat#File> .
<http://gold.jolocom.com/people/justas/> <http://www.w3.org/1999/02/22-rdf-syntax-ns#type> <http://www.w3.org/ns/ldp#Container> .
<http://gold.jolocom.com/people/justas/.acl.ttl> <http://www.w3.org/ns/posix/stat#mtime> "1430143653" .
<http://gold.jolocom.com/people/justas/.ttl> <http://www.w3.org/1999/02/22-rdf-syntax-ns#type> <http://www.w3.org/ns/posix/stat#File> .
<http://gold.jolocom.com/people/justas/> <http://www.w3.org/ns/ldp#contains> <http://gold.jolocom.com/people/justas/card.ttl> .
<http://gold.jolocom.com/people/justas/> <http://www.w3.org/ns/ldp#contains> <http://gold.jolocom.com/people/justas/.acl.ttl> .
<http://gold.jolocom.com/people/justas/card.acl.ttl> <http://www.w3.org/ns/posix/stat#size> "464" .
<http://gold.jolocom.com/people/justas/card.acl> <http://www.w3.org/1999/02/22-rdf-syntax-ns#type> <http://www.w3.org/ns/posix/stat#File> .
<http://gold.jolocom.com/people/justas/card.acl> <http://www.w3.org/ns/posix/stat#size> "65" .
<http://gold.jolocom.com/people/justas/.acl> <http://www.w3.org/ns/posix/stat#size> "61" .
<http://gold.jolocom.com/people/justas/.ttl> <http://www.w3.org/ns/posix/stat#mtime> "1430143653" .
<http://gold.jolocom.com/people/justas/card> <http://www.w3.org/ns/posix/stat#size> "61" .
<http://gold.jolocom.com/people/justas/card.acl> <http://www.w3.org/ns/posix/stat#mtime> "1430143653" .
<http://gold.jolocom.com/people/justas/> <http://www.w3.org/ns/posix/stat#size> "4096" .
<http://gold.jolocom.com/people/justas/.acl.ttl> <http://www.w3.org/1999/02/22-rdf-syntax-ns#type> <http://www.w3.org/ns/posix/stat#File> .
<http://gold.jolocom.com/people/justas/card.acl.ttl> <http://www.w3.org/1999/02/22-rdf-syntax-ns#type> <http://www.w3.org/ns/posix/stat#File> .
<http://gold.jolocom.com/people/justas/> <http://www.w3.org/ns/ldp#contains> <http://gold.jolocom.com/people/justas/card.acl.ttl> .
<http://gold.jolocom.com/people/justas/card> <http://www.w3.org/1999/02/22-rdf-syntax-ns#type> <http://www.w3.org/ns/posix/stat#File> .
<http://gold.jolocom.com/people/justas/card> <http://www.w3.org/ns/posix/stat#mtime> "1430143653" .

The server should offer support for LF-SPARQL. We would like to use LF-SPARQL to offload some of the client's work onto the server, and have the server do all the data aggregation from sources all over the Web.

Here's a brief description of how LF-SPARQL is supposed to work. The client (usually a Webapp) posts a query to an LF-SPARQL endpoint, which looks more or less like this:

SELECT ?workspace WHEREVER { <https://deiu.rww.io/profile/card#me> space:storage ?storage; ?storage space:workspace ?workspace . } LIMIT 10

Please note the keyword here is "WHEREVER" instead of "WHERE", which is used to indicate that this is a LF-SPARQL query, and which means that the server should look for data "wherever" it may located -- even on remote servers.

As you might have spotted, the starting point for figuring out where to fetch data from is the WebID: https://deiu.rww.io/profile/card#me.

The algorithm is pretty simple: dereference all resources that are not variables and store the RDF in a common graph (or quad store), then start matching variables within the common graph until all variables are bound.

When following "install from github" instructions on Ubuntu 12 or 14 LTS you get the following errors.

# go get github.com/linkeddata/gold/
# github.com/linkeddata/gold
/root/go/src/github.com/linkeddata/gold/acl.go:52: syntax error: unexpected range, expecting {
/root/go/src/github.com/linkeddata/gold/acl.go:57: syntax error: unexpected range, expecting {
/root/go/src/github.com/linkeddata/gold/acl.go:73: syntax error: unexpected range, expecting {
/root/go/src/github.com/linkeddata/gold/acl.go:80: syntax error: unexpected }
/root/go/src/github.com/linkeddata/gold/acl.go:84: syntax error: unexpected range, expecting {
/root/go/src/github.com/linkeddata/gold/acl.go:100: syntax error: unexpected range, expecting {
/root/go/src/github.com/linkeddata/gold/acl.go:103: non-declaration statement outside function body
/root/go/src/github.com/linkeddata/gold/acl.go:104: syntax error: unexpected range, expecting {
/root/go/src/github.com/linkeddata/gold/acl.go:106: non-declaration statement outside function body
/root/go/src/github.com/linkeddata/gold/acl.go:107: syntax error: unexpected }
/root/go/src/github.com/linkeddata/gold/acl.go:107: too many errors

Ubuntu 14.04 LTS golang-go version is go.1.2.1.

To fix, use gvm, see http://www.hostingadvice.com/how-to/install-golang-on-ubuntu/

Skip step 2 it's redundant, and install dependency apt-get install bison

It seems like there's a lot of fuss about logging out with client certificates. E.g.

• https://stackoverflow.com/questions/10487205/https-client-certificate-logout-relogin
• https://code.google.com/p/chromium/issues/detail?id=90676

It would really cool if there was an API endpoint for that on gold so that we don't have to come up with various client side hacks.

The server needs a skin (web app) to display contents of a dir.

I get this when following the README.md

$ ~/go/bin/server -https=":8443" -root=/User/ldp/ -debug

Add support for groups in ACLs.

Take into account CORS' "Origin" header for policies.

Currently, file uploads use the default OS temp dir, which may not be sufficient for large files. Look at [0] for a hint.

[0] https://golang.org/pkg/io/ioutil/#TempFile

It would be good to have (by default) a public page on gold which gives some anonymous stats like the number of users, mean and median number of triples/user, so we can see ho things grow.

And link it maybe to and from a master list of gold installations (until there a million)

Sniffing mime types is a error-prone and nasty way to work, and opens up the system to security attacks. The server should keep track of the mime type of data it has been given.

One way is in the file extension, ensuring the file extension used matches the mime type. Andrei and I discussed this and the result is dumped at
https://www.w3.org/DesignIssues/HTTPFilenameMapping.html
The last method "sweet spot" of filename generation may be the best.

gold should aim to remove sniffing entirely.

Tim suggested that one might want to add a suffix for the server's base URI -- i.e. https://server.com/data/ where the local filesystem dir is mounted.

looking at server.go line 973, on a POST it sends resource.URI to the websocket

https://github.com/linkeddata/gold/blob/master/server.go#L973

but resource.URI seems to be the new resource, rather than, the LDPC

so I think that resources that are subscribed to the container wont see a sub

id be happy to patch it, any thoughts on the best way?

Somehow related to #3 -- users should have a way to recover lost/expired certificates. This could be done through a class password-based login system, or an email recovery system (which could be used in case of losing the password too).

Just to make sure we regenerate keys and cookies don't become stale.

This could be useful for cloning web apps directly into the user's data space.

Implement code to generate an LD-Patch from two RDF graphs. (that is, it's "diff" for RDF) We also would like this in JavaScript, but maybe GopherJS could be used to generate that from this golang version.

If Read-only access is given to a resource, the returned Accept-Post or Accept-Patch headers should not be set.

See https://data.fm/proxy