Virtuoso Authentication Server UI

What does the Virtuoso Authentication Server UI offer?

Virtuoso offers Authentication UI for:

• Application Keys and Protected SPARQL Endpoint: OAuth provides a secure data transmission level mechanism for your SPARQL endpoint. It enables you to securely interact with your RDF database from a variety of locations. It also allows you to provide controlled access to private data to select user profiles.
• FOAF+SSL ACLs: FOAF+SSL implements a conceptual authentication and authorization protocol by linking a Web ID (also known as a Personal URI) to a public key to create a global, decentralized, distributed, and open yet secure authentication system that functions with existing browsers.

How do I install the OAuth server?

The Virtuoso OAuth server is one of the components delivered in the policy_manager_dav.vad package.

How is the OAuth UI accessible?

The Authentication UI is accessible through the URL http://<cname>:<port>/policy_manager, where <cname>:<port> are replaced by your local server values.

What are the Menu options?

1. OAuth Keys is used to create Consumer Key and Secret for the relevant ODS applications.
2. FOAF+SSL ACLs is used to set up URIs for DB-level controls for SELECT, UPDATE, and DELETE functionality.
   • Note: Should be logged in as user with DBA permissions, or the default "dba" user.
3. Protected SPARQL Endpoint is used to enter your application Consumer Key and perform secure SPARQL queries.

What privileges should the user have?

The user must have SQL privileges in order to run secured SPARQL statements.

What can I use the FOAF+SSL ACLs for?

FOAF+SSL ACLs are used to designate which users (identified and authenticated through their Web ID, Public Key, and browser-installed Certificate) may execute queries through the Virtuoso SPARQL-SSL Endpoint.

Where is the Virtuoso SPARQL-SSL Endpoint?

The Virtuoso SPARQL-SSL Endpoint is at https://<cname>:<port>/sparql-ssl, where <cname>:<port> are replaced by your local server values.

Tutorials

• SPARQL OAuth Tutorial
• FOAF+SSL ACLs Tutorial

References

• FOAF+SSL Support in OpenLink Data Spaces.
• Guide for Set up a X.509 certificate issuer and HTTPS listener and generate ODS user certificates.
• CA Keys Import using Conductor
• FOAF+SSL Specification
• Test FOAF+SSL Certificate page
• FOAF+SSL Certificate Generation page
• Virtuoso Demo SPARQL-SSL Endpoint