Refactored OAuth and access requests

They have all moved to the end-user dataspace and do not need to extend `GraphStoreImpl` or `SPARQLEndpointImpl` anymore

Author: namedgraph

config/system.trig

@@ -52,3 +52,79 @@
     a:graphStore <http://fuseki-end-user:3030/ds/> ;
     a:quadStore <http://fuseki-end-user:3030/ds/> ;
     lapp:backendProxy <http://varnish-end-user/> .
+
+# Anna dataspace admin
+
+<urn:linkeddatahub:apps/anna/admin> a lapp:Application, lapp:AdminApplication ;
+    dct:title "Anna admin" ;
+    ldh:origin <https://admin.anna.localhost:4443> ;
+    ldt:ontology <https://w3id.org/atomgraph/linkeddatahub/admin#> ;
+    ldt:service <urn:linkeddatahub:services/anna/admin> ;
+    ac:stylesheet <static/com/atomgraph/linkeddatahub/xsl/bootstrap/2.3.2/admin/layout.xsl> ;
+    lapp:endUserApplication <urn:linkeddatahub:apps/anna/end-user> ;
+    lapp:frontendProxy <http://varnish-frontend:6060/> .
+
+<urn:linkeddatahub:services/anna/admin> a sd:Service ;
+    dct:title "Anna admin service" ;
+    sd:supportedLanguage sd:SPARQL11Query, sd:SPARQL11Update ;
+    sd:endpoint <http://fuseki-admin:3030/ds/> ;
+    a:graphStore <http://fuseki-admin:3030/ds/> ;
+    a:quadStore <http://fuseki-admin:3030/ds/> ;
+    lapp:backendProxy <http://varnish-admin/> .
+
+# Anna dataspace end-user
+
+<urn:linkeddatahub:apps/anna/end-user> a lapp:Application, lapp:EndUserApplication ;
+    dct:title "Anna" ;
+    ldh:origin <https://anna.localhost:4443> ;
+    ldt:ontology <https://anna.localhost:4443/ns#> ;
+    ldt:service <urn:linkeddatahub:services/anna/end-user> ;
+    lapp:adminApplication <urn:linkeddatahub:apps/anna/admin> ;
+    lapp:frontendProxy <http://varnish-frontend:6060/> ;
+    lapp:public true .
+
+<urn:linkeddatahub:services/anna/end-user> a sd:Service ;
+    dct:title "Anna service" ;
+    sd:supportedLanguage sd:SPARQL11Query, sd:SPARQL11Update ;
+    sd:endpoint <http://fuseki-end-user:3030/ds/> ;
+    a:graphStore <http://fuseki-end-user:3030/ds/> ;
+    a:quadStore <http://fuseki-end-user:3030/ds/> ;
+    lapp:backendProxy <http://varnish-end-user/> .
+
+# Bjørn dataspace admin
+
+<urn:linkeddatahub:apps/bjorn/admin> a lapp:Application, lapp:AdminApplication ;
+    dct:title "Bjørn admin" ;
+    ldh:origin <https://admin.xn--bjrn-hra.localhost:4443> ;
+    ldt:ontology <https://w3id.org/atomgraph/linkeddatahub/admin#> ;
+    ldt:service <urn:linkeddatahub:services/bjorn/admin> ;
+    ac:stylesheet <static/com/atomgraph/linkeddatahub/xsl/bootstrap/2.3.2/admin/layout.xsl> ;
+    lapp:endUserApplication <urn:linkeddatahub:apps/bjorn/end-user> ;
+    lapp:frontendProxy <http://varnish-frontend:6060/> .
+
+<urn:linkeddatahub:services/bjorn/admin> a sd:Service ;
+    dct:title "Bjørn admin service" ;
+    sd:supportedLanguage sd:SPARQL11Query, sd:SPARQL11Update ;
+    sd:endpoint <http://fuseki-admin:3030/ds/> ;
+    a:graphStore <http://fuseki-admin:3030/ds/> ;
+    a:quadStore <http://fuseki-admin:3030/ds/> ;
+    lapp:backendProxy <http://varnish-admin/> .
+
+# Bjørn dataspace end-user
+
+<urn:linkeddatahub:apps/bjorn/end-user> a lapp:Application, lapp:EndUserApplication ;
+    dct:title "Bjørn" ;
+    ldh:origin <https://xn--bjrn-hra.localhost:4443> ;
+    ldt:ontology <https://xn--bjrn-hra.localhost:4443/ns#> ;
+    ldt:service <urn:linkeddatahub:services/bjorn/end-user> ;
+    lapp:adminApplication <urn:linkeddatahub:apps/bjorn/admin> ;
+    lapp:frontendProxy <http://varnish-frontend:6060/> ;
+    lapp:public true .
+
+<urn:linkeddatahub:services/bjorn/end-user> a sd:Service ;
+    dct:title "Bjørn service" ;
+    sd:supportedLanguage sd:SPARQL11Query, sd:SPARQL11Update ;
+    sd:endpoint <http://fuseki-end-user:3030/ds/> ;
+    a:graphStore <http://fuseki-end-user:3030/ds/> ;
+    a:quadStore <http://fuseki-end-user:3030/ds/> ;
+    lapp:backendProxy <http://varnish-end-user/> .

platform/datasets/admin.trig

@@ -1,11 +1,11 @@
 @prefix def:	<https://w3id.org/atomgraph/linkeddatahub/default#> .
 @prefix ldh:	<https://w3id.org/atomgraph/linkeddatahub#> .
-@prefix ac:	<https://w3id.org/atomgraph/client#> .
+@prefix ac:	    <https://w3id.org/atomgraph/client#> .
 @prefix rdf:	<http://www.w3.org/1999/02/22-rdf-syntax-ns#> .
 @prefix xsd:	<http://www.w3.org/2001/XMLSchema#> .
-@prefix dh:	<https://www.w3.org/ns/ldt/document-hierarchy#> .
+@prefix dh:	    <https://www.w3.org/ns/ldt/document-hierarchy#> .
 @prefix sd:     <http://www.w3.org/ns/sparql-service-description#> .
-@prefix sp:	<http://spinrdf.org/sp#> .
+@prefix sp:	    <http://spinrdf.org/sp#> .
 @prefix sioc:	<http://rdfs.org/sioc/ns#> .
 @prefix foaf:	<http://xmlns.com/foaf/0.1/> .
 @prefix dct:	<http://purl.org/dc/terms/> .
@@ -58,22 +58,6 @@
 
 }
 
-<access>
-{
-
-    <access> a foaf:Document ;
-        dct:title "Access endpoint" .
-
-}
-
-<access/request>
-{
-
-    <access/request> a foaf:Document ;
-        dct:title "Access request endpoint" .
-
-}
-
 # CONTAINERS
 
 <queries/>
@@ -355,40 +339,6 @@ WHERE
 
 }
 
-<services/dbpedia/>
-{
-
-    <services/dbpedia/> a dh:Item ;
-        sioc:has_container <queries/> ;
-        dct:title "DBPedia" ;
-        foaf:primaryTopic <services/dbpedia/#this> .
-
-    <services/dbpedia/#this>
-        a sd:Service ;
-        dct:title "DBPedia" ;
-        dct:description "Public SPARQL endpoint providing access to the DBpedia knowledge base, a crowd-sourced community effort to extract structured information from Wikipedia and make this information available on the Web." ;
-        sd:endpoint <https://dbpedia.org/sparql> ;
-        sd:supportedLanguage sd:SPARQL11Query .
-
-}
-
-<services/wikidata/>
-{
-
-    <services/wikidata/> a dh:Item ;
-        sioc:has_container <queries/> ;
-        dct:title "Wikidata" ;
-        foaf:primaryTopic <services/wikidata/#this> .
-
-    <services/wikidata/#this>
-        a sd:Service ;
-        dct:title "Wikidata" ;
-        dct:description "Public SPARQL endpoint providing access to Wikidata, a free and open knowledge base that acts as central storage for the structured data of Wikimedia projects including Wikipedia, Wikivoyage, Wiktionary, Wikisource, and others." ;
-        sd:endpoint <https://query.wikidata.org/sparql> ;
-        sd:supportedLanguage sd:SPARQL11Query .
-
-}
-
 ### ADMIN-SPECIFIC
 
 @prefix lacl:	<https://w3id.org/atomgraph/linkeddatahub/admin/acl#> .
@@ -437,38 +387,6 @@ WHERE
 
 }
 
-<oauth2/login>
-{
-
-    <oauth2/login> a foaf:Document ;
-        dct:title "OAuth 2.0 login" .
-
-}
-
-<oauth2/authorize/google>
-{
-
-    <oauth2/authorize/google> a foaf:Document ;
-        dct:title "Google OAuth2.0 authorization" .
-
-}
-
-<oauth2/login/orcid>
-{
-
-    <oauth2/login/orcid> a foaf:Document ;
-        dct:title "ORCID OAuth2.0 login" .
-
-}
-
-<oauth2/authorize/orcid>
-{
-
-    <oauth2/authorize/orcid> a foaf:Document ;
-        dct:title "ORCID OAuth2.0 authorization" .
-
-}
-
 <queries/construct-constructors/>
 {
 
@@ -665,7 +583,7 @@ WHERE
     <acl/authorizations/access/#this> a acl:Authorization ;
         rdfs:label "Access description access" ;
         rdfs:comment "Allows non-authenticated access" ;
-        acl:accessTo <access> ;
+        acl:accessToClass ldh:Access ;
         acl:mode acl:Read ;
         acl:agentClass foaf:Agent, acl:AuthenticatedAgent .
 
@@ -684,7 +602,7 @@ WHERE
     <acl/authorizations/access-request/#this> a acl:Authorization ;
         rdfs:label "Access request access" ;
         rdfs:comment "Allows non-authenticated access" ;
-        acl:accessTo <access/request> ;
+        acl:accessToClass ldh:AccessRequest ;
         acl:mode acl:Append ;
         acl:agentClass foaf:Agent, acl:AuthenticatedAgent .
 
@@ -723,64 +641,26 @@ WHERE
     <acl/authorizations/oauth2-login/#this> a acl:Authorization ;
         rdfs:label "OAuth2 login access" ;
         rdfs:comment "Required to enable public OAuth2 login" ;
-        acl:accessTo <oauth2/login> ;
+        acl:accessToClass ldh:OAuthLogin ;
         acl:mode acl:Read ;
         acl:agentClass foaf:Agent .
 
 }
 
-# Google authorization
+# OAuth2 authorization
 
-<acl/authorizations/authorize-google/>
+<acl/authorizations/oauth2-authorize/>
 {
 
-    <acl/authorizations/authorize-google/> a dh:Item ;
+    <acl/authorizations/oauth2-authorize/> a dh:Item ;
         sioc:has_container <acl/authorizations/> ;
-        dct:title "Google's OAuth2 authorization" ;
-        foaf:primaryTopic <acl/authorizations/authorize-google/#this> .
+        dct:title "OAuth2 authorization" ;
+        foaf:primaryTopic <acl/authorizations/oauth2-authorize/#this> .
 
-    <acl/authorizations/authorize-google/#this> a acl:Authorization ;
-        rdfs:label "Google's OAuth2 authorization" ;
+    <acl/authorizations/oauth2-authorize/#this> a acl:Authorization ;
+        rdfs:label "OAuth2 authorization" ;
         rdfs:comment "Required to enable public OAuth2 login" ;
-        acl:accessTo <oauth2/authorize/google> ;
-        acl:mode acl:Read ;
-        acl:agentClass foaf:Agent .
-
-}
-
-# ORCID login
-
-<acl/authorizations/oauth2-login-orcid/>
-{
-
-    <acl/authorizations/oauth2-login-orcid/> a dh:Item ;
-        sioc:has_container <acl/authorizations/> ;
-        dct:title "ORCID OAuth2 login access" ;
-        foaf:primaryTopic <acl/authorizations/oauth2-login-orcid/#this> .
-
-    <acl/authorizations/oauth2-login-orcid/#this> a acl:Authorization ;
-        rdfs:label "ORCID OAuth2 login access" ;
-        rdfs:comment "Required to enable public ORCID OAuth2 login" ;
-        acl:accessTo <oauth2/login/orcid> ;
-        acl:mode acl:Read ;
-        acl:agentClass foaf:Agent .
-
-}
-
-# ORCID authorization
-
-<acl/authorizations/authorize-orcid/>
-{
-
-    <acl/authorizations/authorize-orcid/> a dh:Item ;
-        sioc:has_container <acl/authorizations/> ;
-        dct:title "ORCID's OAuth2 authorization" ;
-        foaf:primaryTopic <acl/authorizations/authorize-orcid/#this> .
-
-    <acl/authorizations/authorize-orcid/#this> a acl:Authorization ;
-        rdfs:label "ORCID's OAuth2 authorization" ;
-        rdfs:comment "Required to enable public ORCID OAuth2 login" ;
-        acl:accessTo <oauth2/authorize/orcid> ;
+        acl:accessToClass ldh:OAuthAuthorize ;
         acl:mode acl:Read ;
         acl:agentClass foaf:Agent .
 

platform/datasets/end-user.trig

@@ -1,11 +1,11 @@
 @prefix def:	<https://w3id.org/atomgraph/linkeddatahub/default#> .
 @prefix ldh:	<https://w3id.org/atomgraph/linkeddatahub#> .
-@prefix ac:	<https://w3id.org/atomgraph/client#> .
+@prefix ac:	    <https://w3id.org/atomgraph/client#> .
 @prefix rdf:	<http://www.w3.org/1999/02/22-rdf-syntax-ns#> .
 @prefix xsd:	<http://www.w3.org/2001/XMLSchema#> .
-@prefix dh:	<https://www.w3.org/ns/ldt/document-hierarchy#> .
+@prefix dh:	    <https://www.w3.org/ns/ldt/document-hierarchy#> .
 @prefix sd:     <http://www.w3.org/ns/sparql-service-description#> .
-@prefix sp:	<http://spinrdf.org/sp#> .
+@prefix sp:	    <http://spinrdf.org/sp#> .
 @prefix sioc:	<http://rdfs.org/sioc/ns#> .
 @prefix foaf:	<http://xmlns.com/foaf/0.1/> .
 @prefix dct:	<http://purl.org/dc/terms/> .
@@ -58,22 +58,6 @@
 
 }
 
-<access>
-{
-
-    <access> a foaf:Document ;
-        dct:title "Access endpoint" .
-
-}
-
-<access/request>
-{
-
-    <access/request> a foaf:Document ;
-        dct:title "Access request endpoint" .
-
-}
-
 # CONTAINERS
 
 <queries/>
@@ -355,6 +339,56 @@ WHERE
 
 }
 
+### END-USER-SPECIFIC
+
+<access>
+{
+
+    <access> a ldh:Access ;
+        dct:title "Access endpoint" .
+
+}
+
+<access/request>
+{
+
+    <access/request> a ldh:AccessRequest ;
+        dct:title "Access request endpoint" .
+
+}
+
+<oauth2/login/google>
+{
+
+    <oauth2/login/google> a ldh:OAuthLogin ;
+        dct:title "OAuth 2.0 login" .
+
+}
+
+<oauth2/authorize/google>
+{
+
+    <oauth2/authorize/google> a ldh:OAuthAuthorize ;
+        dct:title "Google OAuth2.0 authorization" .
+
+}
+
+<oauth2/login/orcid>
+{
+
+    <oauth2/login/orcid> a ldh:OAuthLogin ;
+        dct:title "ORCID OAuth2.0 login" .
+
+}
+
+<oauth2/authorize/orcid>
+{
+
+    <oauth2/authorize/orcid> a ldh:OAuthAuthorize ;
+        dct:title "ORCID OAuth2.0 authorization" .
+
+}
+
 <services/dbpedia/>
 {