|GoodRelations is a standardized vocabulary for product, price, and company data that can be embedded into existing static and dynamic Web pages.|
This recipe is a stub and will be completed shortly.
If we shall make it a priority for you, please e-mail to mheppATcomputerDOTorg.
On this page, we explain how you can restrict the access to GoodRelations data, e.g. in order to protect price information meant for special audiences only (reseller prices, student rebates, ...).
It is important to educate potential users that while GoodRelations data about your products should be placed on the Web, this does not imply that you cannot control who will be reading and using it.
In a nutshell, you can use the very same mechanisms for protecting your product and price information in GoodRelations that you would use for XML or PDF documents.
For example, you may require registration and a username / password combination prior to granting access to your price information.
You can also make part of your data freely accessible and protect other parts.
The cool thing about GoodRelations and Linked Data is that those users whom you allow to see protected data can easily collate and integrate the datasets. For example, one of your authorized retailers can use your public datasheets and your protected dealer price list to compute its public end user prices by adding a fixed margin.
There are at least three techniques for this:
- HTTP Basic Authentication
- HTTP Digest Authentication
- WebID (formerly known as FOAF+SSL).
- You should be familiar with the foundations of GoodRelations, e.g. by watching the following two videos:
- It's helpful if you understand the basics of HTTP Access Control mechanisms, namely HTTP Authentication (Basic and Digest).
- Access control in HTTP: Basic and digest access
- WebID, formerly known as FOAF-SSL
Links & Materials
- Basic HTTP Authentication: http://en.wikipedia.org/wiki/Basic_access_authentication (non-authoritative resource)
- Digest access Authentication: http://en.wikipedia.org/wiki/Basic_access_authentication (non-authoritative resource)
- HTTPS: http://en.wikipedia.org/wiki/HTTP_Secure (non-authoritative resource)
- Franks, J., Hallam-Baker, P., Hostetler, J., Lawrence, S., Leach, P., Luotonen, A., Sink, E., and L. Stewart: HTTP Authentication: Basic and Digest Access Authentication, RFC 2617, June 1999.
- RFC 2818: HTTP Over TLS
- OAuth: http://oauth.net/
- OpenID: http://openid.net/
- Wikipedia on OpenID: http://en.wikipedia.org/wiki/OpenID
- FOAF+SSL: Adding Security to Open Distributed Social Networks
- H. Story: FOAF + SSL: RESTful Authentication for the Social Web