New spec

Skip to first unread message

Fred Hauschel

Oct 14, 2020, 2:24:31 PM10/14/20
to Trellis LDP
a new spec is available. @Aaron saw you in the solid auth chat.
Are you working on some changed regarding this spec? Or is everything already integrated in trellis?

I currently struggeling with keycloak and oauth2/oidc with another non LD project. Hope to come back to solid soon. Maybe it's getting a LD project in the near future ;-)

got a new project info today! Sound also very interesting:

Best regards

Aaron Coburn

Oct 14, 2020, 2:39:14 PM10/14/20
Hi Freddy,
Yes, I have been very involved in the Solid authentication panel. From the perspective of Trellis, it's principally a matter of supporting JWT-based access tokens, which Trellis already supports. What the Solid-WebID spec adds to this is DPoP (Demonstration of Proof of Possession at the Application layer:, which is really just about adding a small JAX-RS filter. The idea is that (eventually) support for DPoP validation will be integrated directly into some upstream libraries: Smallrye and Quarkus:

The other part that is added (from the perspective of the resource server, i.e. Trellis) is WebID validation, which is also just a simple JAX-RS filter. Those two parts (DPoP and WebID validation) are not currently part of Trellis, but it would not be difficult to add support for them.

With KeyCloak, my experience has been that it works pretty well in simple, single-node arrangements. But once you try to use it in an HA/Clustered context, it gets really squirrly. 

Cheers, Aaron

You received this message because you are subscribed to the Google Groups "Trellis LDP" group.
To unsubscribe from this group and stop receiving emails from it, send an email to
To view this discussion on the web visit
Reply all
Reply to author
0 new messages