fixing links in readme

nicola · nicola · commit 0b1b1088c625 · 2016-05-03T17:49:20.000-04:00
diff --git a/.gitignore b/.gitignore
@@ -3,8 +3,3 @@ node_modules/
 *.swp
 .tern-port
 npm-debug.log
-.acl
-profile/
-accounts/
-settings/
-temp/
diff --git a/README.md b/README.md
@@ -37,15 +37,8 @@ $ solid --port 8443 --ssl-key path/to/ssl-key.pem --ssl-cert path/to/ssl-cert.pe
 # Solid server (solid v0.2.24) running on https://localhost:8443/
 ```
 
-First time user? If you have never run `solid` before, let's get you a WebID to access your server.
-```bash
-
-$ solid --port 8443 --ssl-key path/to/ssl-key.pem --ssl-cert path/to/ssl-cert.pem
-# Action required: Create your admin account on https://localhost:8080/
-# When done, stop your server (<ctrl>+c) and restart without "--create-admin"
-```
-
 If you want to run `solid` on a particular folder (different from the one you are in, e.g. `path/to/folder`):
+
 ```bash
 $ solid --root path/to/folder --port 8443 --ssl-key path/to/ssl-key.pem --ssl-cert path/to/ssl-cert.pem
 # Solid server (solid v0.2.24) running on https://localhost:8443/
@@ -105,11 +98,10 @@ Options:
    --ssl-cert         Path to the SSL certificate key in PEM format
    --allow-signup     Allow users to register their WebID on subdomains
 
-   --create-admin     Allow a user to set up their initial identity in single-user mode
    --no-live          Disable live support through WebSockets
-   --default-app      URI to use as a default app for resources (default: https://solid.github.io/warp/#/list/)
+   --default-app      URI to use as a default app for resources (default: https://linkeddata.github.io/warp/#/list/)
    --proxy            Use a proxy on example.tld/proxyPath
-   --file-browser     URI to use as a default app for resources (default: https://solid.github.io/warp/#/list/)
+   --file-browser     URI to use as a default app for resources (default: https://linkeddata.github.io/warp/#/list/)
    --data-browser     Enable viewing RDF resources using a default data browser application (e.g. mashlib)
    --suffix-acl       Suffix for acl files (default: '.acl')
    --suffix-meta      Suffix for metadata files (default: '.meta')
@@ -245,7 +237,7 @@ above, you would then be able to visit `https://localhost:8443` in the browser
 (ignoring the Untrusted Connection browser warnings as usual), where your
 `solid` server would redirect you to the default viewer app (see the
 `--file-browser` server config parameter), which is usually the
-[github.io/warp](https://solid.github.io/warp/#/list/) file browser.
+[github.io/warp](https://linkeddata.github.io/warp/#/list/) file browser.
 
 Accessing most Solid apps (such as Warp) will prompt you to select your browser
 side certificate which contains a WebID from a Solid storage provider (see
diff --git a/lib/create-app.js b/lib/create-app.js
@@ -24,6 +24,21 @@ function createApp (argv) {
   var ldp = new LDP(argv)
   var app = express()
 
+  // check if we have master ACL or not
+  var masterAcl
+  var checkMasterAcl = function (req, callback) {
+    if (masterAcl) {
+      return callback(true)
+    }
+
+    ldp.exists(req.hostname, '/' + ldp.suffixAcl, function (err) {
+      if (!err) {
+        masterAcl = true
+      }
+      callback(!err)
+    })
+  }
+
   // Setting options as local variable
   app.locals.ldp = ldp
 
@@ -63,29 +78,49 @@ function createApp (argv) {
   }
 
   // Adding Multi-user support
-  if (ldp.idp || ldp.createAdmin) {
+  if (ldp.webid) {
     var idp = IdentityProvider({
       store: ldp,
       suffixAcl: ldp.suffixAcl,
-      overwrite: ldp.createAdmin,
       settings: 'settings',
       inbox: 'inbox'
     })
-    app.use('/accounts', idp.middleware(corsSettings))
+    var needsOverwrite = function (req, res, next) {
+      checkMasterAcl(req, function (found) {
+        if (!found) {
+          // this allows IdentityProvider to overwrite root acls
+          idp.middleware(corsSettings, true)(req, res, next)
+        } else if (found && ldp.idp) {
+          idp.middleware(corsSettings)(req, res, next)
+        } else {
+          next()
+        }
+      })
+    }
+    app.use('/accounts', needsOverwrite)
     app.use('/', corsSettings, idp.get.bind(idp))
   }
 
   if (ldp.idp) {
     app.use(vhost('*', LdpMiddleware(corsSettings)))
   }
 
-  if (ldp.createAdmin) {
-    app.get('/', function (req, res) {
-      res.set('Content-Type', 'text/html')
-      var signup = path.join(__dirname, '../static/signup.html')
-      res.sendFile(signup)
+  app.get('/', function (req, res, next) {
+    // Do not bother showing html page can't be read
+    if (!req.accepts('text/html') || !ldp.webid) {
+      return next()
+    }
+
+    checkMasterAcl(req, function (found) {
+      if (!found) {
+        res.set('Content-Type', 'text/html')
+        var signup = path.join(__dirname, '../static/signup.html')
+        res.sendFile(signup)
+      } else {
+        next()
+      }
     })
-  }
+  })
   app.use('/', LdpMiddleware(corsSettings))
 
   return app
diff --git a/lib/identity-provider.js b/lib/identity-provider.js
@@ -39,7 +39,6 @@ function IdentityProvider (options) {
   this.buildURI = options.buildURI || defaultBuildURI
   this.suffixAcl = options.suffixAcl
   this.defaultContainers = options.defaultContainers || defaultContainers
-  this.overwrite = options.overwrite
   this.inbox = options.inbox
   this.settings = options.settings
 }
@@ -113,7 +112,7 @@ IdentityProvider.prototype.create = function (options, cert, callback) {
   var subdomain = options.host.split(':')[0]
   self.store.exists(subdomain, '/', function (err) {
     // if page exists, cannot create account
-    if (!self.overwrite && (!err || err.status !== 404)) {
+    if (!options.firstUser && (!err || err.status !== 404)) {
       debug('Cannot create ' + subdomain + ', it already exists')
       var error = new Error('Account already exists')
       error.status = 406
@@ -511,6 +510,7 @@ IdentityProvider.prototype.post = function (req, res, next) {
   var self = this
   var options = req.body
   options.host = req.get('host')
+  options.firstUser = res.locals.firstUser
   var agent = self.agent(options)
   var spkac = null
   var cert = null
@@ -558,14 +558,15 @@ IdentityProvider.prototype.post = function (req, res, next) {
 }
 
 // Middleware (or Router) to serve the IdentityProvider
-IdentityProvider.prototype.middleware = function (corsSettings) {
+IdentityProvider.prototype.middleware = function (corsSettings, firstUser) {
   var router = express.Router('/')
   var parser = bodyParser.urlencoded({ extended: false })
 
   if (corsSettings) {
     router.use(corsSettings)
   }
-  router.post('/new', parser, this.post.bind(this))
+
+  router.post('/new', parser, setFirstUser(firstUser), this.post.bind(this))
   router.post('/cert', parser, this.newCert.bind(this))
   router.all('/*', function (req, res) {
     var host = uriAbs(req)
@@ -576,3 +577,10 @@ IdentityProvider.prototype.middleware = function (corsSettings) {
 
   return router
 }
+
+function setFirstUser (isFirstUser) {
+  return function (req, res, next) {
+    res.locals.firstUser = isFirstUser
+    next()
+  }
+}
diff --git a/static/signup.html b/static/signup.html
@@ -97,8 +97,7 @@ <h2>Finish by issuing credentials in the form of a certificate</h2>
   document.getElementById('cert').style.display = 'none'
   var done = document.createElement('div')
   done.innerHTML = '<h2>You\'re all set!</h2>'
-  done.innerHTML += '<p>Please restart your server without the <strong>--create-admin</strong> parameter.</p>'
-  done.innerHTML += '<p>If an error occured and a certificate was not installed, please reload this page and start again.</p>'
+  done.innerHTML += '<p>as soon as you will reset the page, you will be logged in!</p>'
   document.querySelector('body').appendChild(done)
 }
 
diff --git a/test/resources/acl/owner-only/.acl b/test/resources/acl/owner-only/.acl
@@ -0,0 +1,4 @@
+<#0>
+  <http://www.w3.org/ns/auth/acl#defaultForNew> <./> ;
+  <http://www.w3.org/ns/auth/acl#agent> <https://user1.databox.me/profile/card#me> ;
+  <http://www.w3.org/ns/auth/acl#mode> <http://www.w3.org/ns/auth/acl#Write>, <http://www.w3.org/ns/auth/acl#Control>.

Original file line number	Diff line number	Diff line change
`@@ -97,8 +97,7 @@ <h2>Finish by issuing credentials in the form of a certificate</h2>`
`97`	`97`	`document.getElementById('cert').style.display = 'none'`
`98`	`98`	`var done = document.createElement('div')`
`99`	`99`	`done.innerHTML = '<h2>You\'re all set!</h2>'`
`100`		`- done.innerHTML += '<p>Please restart your server without the <strong>--create-admin</strong> parameter.</p>'`
`101`		`- done.innerHTML += '<p>If an error occured and a certificate was not installed, please reload this page and start again.</p>'`
	`100`	`+ done.innerHTML += '<p>as soon as you will reset the page, you will be logged in!</p>'`
`102`	`101`	`document.querySelector('body').appendChild(done)`
`103`	`102`	`}`
`104`	`103`