PyPI - oldaplib - Versions diffs - 0.3.29__py3-none-any.whl → 0.4.0__py3-none-any.whl - Mend

oldaplib 0.3.29py3-none-any.whl → 0.4.0py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (29) hide show

oldaplib/ontologies/admin-testing.trig +62 -11
oldaplib/ontologies/admin.trig +12 -51
oldaplib/ontologies/gaga.trigs +23 -0
oldaplib/ontologies/oldap.trig +138 -62
oldaplib/src/connection.py +39 -34
oldaplib/src/enums/adminpermissions.py +1 -1
oldaplib/src/enums/datapermissions.py +20 -3
oldaplib/src/enums/{permissionsetattr.py → roleattr.py} +2 -3
oldaplib/src/enums/userattr.py +3 -2
oldaplib/src/helpers/observable_dict.py +1 -0
oldaplib/src/in_project.py +0 -1
oldaplib/src/objectfactory.py +348 -105
oldaplib/src/propertyclass.py +1 -1
oldaplib/src/resourceclass.py +13 -2
oldaplib/src/{permissionset.py → role.py} +90 -112
oldaplib/src/user.py +176 -97
oldaplib/src/userdataclass.py +67 -38
oldaplib/src/version.py +1 -1
oldaplib/test/test_datamodel.py +5 -2
oldaplib/test/test_in_project.py +21 -20
oldaplib/test/test_objectfactory.py +100 -34
oldaplib/test/test_resourceclass.py +3 -3
oldaplib/test/test_role.py +407 -0
oldaplib/test/test_user.py +158 -98
oldaplib/testdata/instances_test.trig +48 -26
{oldaplib-0.3.29.dist-info → oldaplib-0.4.0.dist-info}/METADATA +1 -1
{oldaplib-0.3.29.dist-info → oldaplib-0.4.0.dist-info}/RECORD +28 -27
oldaplib/test/test_permissionset.py +0 -443
{oldaplib-0.3.29.dist-info → oldaplib-0.4.0.dist-info}/WHEEL +0 -0

oldaplib/ontologies/admin-testing.trig CHANGED Viewed

@@ -12,6 +12,9 @@
 :admin {
+    #
+    # add to prohjects for testing
+    #
     :HyperHamlet a :Project ;
         dcterms:creator <https://orcid.org/0000-0003-1681-4036> ;
         dcterms:created "2023-11-04T12:00:00+00:00"^^xsd:dateTime ;
@@ -34,15 +37,42 @@
         rdfs:comment "Elite network between Switzerland and Great Britain"@en ;
         :projectStart "2023-07-01"^^xsd:date .
-    hyha:HyperHamletMember a :PermissionSet ;
+    #
+    # add roles for the two test projects
+    #
+    hyha:HyperHamletMember a :Role ;
         dcterms:creator <https://orcid.org/0000-0003-1681-4036> ;
         dcterms:created "2023-11-04T12:00:00+00:00"^^xsd:dateTime ;
         dcterms:contributor <https://orcid.org/0000-0003-1681-4036> ;
         dcterms:modified "2023-11-04T12:00:00+00:00"^^xsd:dateTime ;
-        rdfs:label "HyHaUpdate"@en, "HyHaUpdate"@de, "HyHaUpdate"@fr, "HyHaUpdate"@it ;
-        :givesPermission :DATA_UPDATE ;
+        rdfs:label "Team HyperHamlet"@en, "Team HyperHamlet"@de, "Équipe HyperHamlet"@fr, "Team HyperHamlet"@it ;
         :definedByProject :HyperHamlet .
+    britnet:BritnetEditor a :Role ;
+        dcterms:creator <https://orcid.org/0000-0003-1681-4036> ;
+        dcterms:created "2023-11-04T12:00:00+00:00"^^xsd:dateTime ;
+        dcterms:contributor <https://orcid.org/0000-0003-1681-4036> ;
+        dcterms:modified "2023-11-04T12:00:00+00:00"^^xsd:dateTime ;
+        rdfs:label "Team SwissBritNet Editor"@en, "Team SwissBritNet Editor"@de, "Équipe SwissBritNet Editor"@fr, "Team SwissBritNet Editor"@it ;
+        :definedByProject <http://www.salsah.org/version/2.0/SwissBritNet> .
+    #
+    # Add additional projects admin permissions and roles/default data permissions to user "rosenth"
+    #
+    <https://orcid.org/0000-0003-1681-4036> :inProject :HyperHamlet .
+    <<<https://orcid.org/0000-0003-1681-4036> :inProject :HyperHamlet>> :hasAdminPermission :ADMIN_RESOURCES .
+    <https://orcid.org/0000-0003-1681-4036> :hasRole hyha:HyperHamletMember .
+    <<<https://orcid.org/0000-0003-1681-4036> :hasRole hyha:HyperHamletMember>> :hasDefaultDataPermission :DATA_PERMISSIONS .
+    <https://orcid.org/0000-0003-1681-4036> :inProject <http://www.salsah.org/version/2.0/SwissBritNet> .
+    <<<https://orcid.org/0000-0003-1681-4036> :inProject <http://www.salsah.org/version/2.0/SwissBritNet>>> :hasAdminPermission
+            :ADMIN_USERS, :ADMIN_ROLES, :ADMIN_RESOURCES, :ADMIN_MODEL, :ADMIN_CREATE, :ADMIN_LISTS .
+    <https://orcid.org/0000-0003-1681-4036> :hasRole britnet:BritnetEditor .
+    <<<https://orcid.org/0000-0003-1681-4036> :hasRole britnet:BritnetEditor>> :hasDefaultDataPermission :DATA_DELETE .
+    #
+    # Add more test users
+    #
     <urn:uuid:3c9bdb26-2451-443c-9ece-edf285639dcc> a oldap:User ;
         dcterms:creator <https://orcid.org/0000-0003-1681-4036> ;
         dcterms:created "2023-11-04T12:00:00+00:00"^^xsd:dateTime ;
@@ -54,15 +84,12 @@
         schema:email "lukas.rosenthaler@unibas.ch"^^xsd:string ;
         :credentials "$2b$12$i2MZSo1p6sYGnMRFxjP8dempYr6p5/HDa93Dm3cMglqUpfQ4bSdgy"^^xsd:string ; # SwissBritNet
         :inProject <http://www.salsah.org/version/2.0/SwissBritNet> ;
-        :hasPermissions :GenericRestricted, :GenericView ;
+        :hasRole :Unknown, hyha:HyperHamletMember, britnet:BritnetEditor ;
         :isActive true .
     <<<urn:uuid:3c9bdb26-2451-443c-9ece-edf285639dcc> :inProject <http://www.salsah.org/version/2.0/SwissBritNet>>>
-        :hasAdminPermission :ADMIN_USERS, :ADMIN_PERMISSION_SETS, :ADMIN_RESOURCES, :ADMIN_CREATE, :ADMIN_LISTS .
-    <<<https://orcid.org/0000-0003-1681-4036> :inProject :HyperHamlet>> :hasAdminPermission :ADMIN_RESOURCES .
-    <<<https://orcid.org/0000-0003-1681-4036> :inProject <http://www.salsah.org/version/2.0/SwissBritNet>>> :hasAdminPermission
-            :ADMIN_USERS, :ADMIN_PERMISSION_SETS, :ADMIN_RESOURCES, :ADMIN_MODEL, :ADMIN_CREATE, :ADMIN_LISTS .
+        :hasAdminPermission :ADMIN_USERS, :ADMIN_ROLES, :ADMIN_RESOURCES, :ADMIN_CREATE, :ADMIN_LISTS .
+    <<<urn:uuid:3c9bdb26-2451-443c-9ece-edf285639dcc> :hasRole britnet:BritnetEditor>> :hasDefaultDataPermission :DATA_VIEW .
     <https://orcid.org/0000-0003-1485-4923> a oldap:User ;
         dcterms:creator <https://orcid.org/0000-0003-1681-4036> ;
@@ -75,10 +102,14 @@
         schema:email "peter.fornaro@unibas.ch"^^xsd:string ;
         :credentials "$2b$12$jWCJZ.qdXE9MSCPdUc0y4.9swWYJcgLZn0ePtRTu/7U8qH/OXXkB2"^^xsd:string ;
         :inProject :HyperHamlet ;
-        :hasPermissions :GenericView ;
+        :hasRole :Unknown, hyha:HyperHamletMember ;
         :isActive true .
+    <<<https://orcid.org/0000-0003-1485-4923> :inProject :HyperHamlet>> :hasAdminPermission :ADMIN_RESOURCES, :ADMIN_CREATE, :ADMIN_LISTS .
     <<<https://orcid.org/0000-0003-1485-4923> :inProject :HyperHamlet>> :hasAdminPermission :ADMIN_RESOURCES .
+    <<<https://orcid.org/0000-0003-1485-4923> :hasRole :Unknown>> :hasDefaultDataPermission :DATA_VIEW .
+    <<<https://orcid.org/0000-0003-1485-4923> :hasRole hyha:HyperHamletMember>> :hasDefaultDataPermission :DATA_UPDATE .
     <https://orcid.org/0000-0002-7403-9595> a oldap:User ;
         dcterms:creator <https://orcid.org/0000-0003-1681-4036> ;
@@ -91,11 +122,31 @@
         schema:email "ina.habermann@unibas.ch"^^xsd:string ;
         :credentials "*"^^xsd:string ;
         :inProject <http://www.salsah.org/version/2.0/SwissBritNet> ;
-        :hasPermissions :GenericRestricted ;
+        :hasRole :Unknown, hyha:HyperHamletMember, britnet:BritnetEditor ;
         :isActive true .
     <<<https://orcid.org/0000-0002-7403-9595> :inProject <http://www.salsah.org/version/2.0/SwissBritNet>>> :hasAdminPermission :ADMIN_RESOURCES .
+    <<<https://orcid.org/0000-0002-7403-9595> :hasRole :Unknown>> :hasDefaultDataPermission :DATA_VIEW .
+    <<<https://orcid.org/0000-0002-7403-9595> :hasRole hyha:HyperHamletMember>> :hasDefaultDataPermission :DATA_UPDATE .
+    <<<https://orcid.org/0000-0002-7403-9595> :hasRole britnet:BritnetEditor>> :hasDefaultDataPermission :DATA_UPDATE .
+    <https://orcid.org/0000-0001-9277-3921> a oldap:User ;
+        dcterms:creator <https://orcid.org/0000-0003-1681-4036> ;
+        dcterms:created "2023-11-04T12:00:00+00:00"^^xsd:dateTime ;
+        dcterms:contributor <https://orcid.org/0000-0003-1681-4036> ;
+        dcterms:modified "2023-11-04T12:00:00+00:00"^^xsd:dateTime ;
+        :userId "bugsbunny"^^xsd:NCName ;
+        schema:familyName "Bunny"^^xsd:string ;
+        schema:givenName "Bugs"^^xsd:string ;
+        schema:email "bugs.bunny@warnerbrothers.com"^^xsd:string ;
+        :credentials "$2b$12$YK2g0KFvkelCZwCcE38UguIE/3aMPjO4XIX.9FJgYJoz2m.5sDlZK"^^xsd:string ; # "DuffyDuck"
+        :inProject :HyperHamlet ;
+        :hasRole :Unknown ;
+        :isActive false .
+    <<<https://orcid.org/0000-0001-9277-3921> :hasRole :Unknown>> :hasDefaultDataPermission :DATA_RESTRICTED .
 }
 hyha:shacl {

oldaplib/ontologies/admin.trig CHANGED Viewed

@@ -25,9 +25,9 @@
         rdfs:label "ADMIN_USERS"@en ;
         rdfs:comment "add/modify/delete users."@en .
-    :ADMIN_PERMISSION_SETS a :AdminPermission ;
-        rdfs:label "ADMIN_PERMISSION_SETS"@en ;
-        rdfs:comment "Add/change/remove permission sets"@en .
+    :ADMIN_ROLES a :AdminPermission ;
+        rdfs:label "ADMIN_ROLES"@en ;
+        rdfs:comment "Add/change/remove roles"@en .
     :ADMIN_RESOURCES a :AdminPermission ;
         rdfs:label "ADMIN_RESOURCES"@en ;
@@ -106,40 +106,12 @@
     #==================================================================
     # Define default permission sets here
     #
-    :GenericRestricted a :PermissionSet ;
+    :Unknown a :Role ;
         dcterms:creator <https://orcid.org/0000-0003-1681-4036> ;
         dcterms:created "2023-11-04T12:00:00+00:00"^^xsd:dateTime ;
         dcterms:contributor <https://orcid.org/0000-0003-1681-4036> ;
         dcterms:modified "2023-11-04T12:00:00+00:00"^^xsd:dateTime ;
-        rdfs:label "Restricted"@en, "Restricted"@de, "Restricted"@fr, "Restricted"@it ;
-        :givesPermission :DATA_RESTRICTED ;
-        :definedByProject :SystemProject .
-    :GenericView a :PermissionSet ;
-        dcterms:creator <https://orcid.org/0000-0003-1681-4036> ;
-        dcterms:created "2023-11-04T12:00:00+00:00"^^xsd:dateTime ;
-        dcterms:contributor <https://orcid.org/0000-0003-1681-4036> ;
-        dcterms:modified "2023-11-04T12:00:00+00:00"^^xsd:dateTime ;
-        rdfs:label "GenericView"@en, "GenericView"@de, "GenericView"@fr, "GenericView"@it ;
-        :givesPermission :DATA_VIEW ;
-        :definedByProject :SystemProject .
-    :GenericExtend a :PermissionSet ;
-        dcterms:creator <https://orcid.org/0000-0003-1681-4036> ;
-        dcterms:created "2023-11-04T12:00:00+00:00"^^xsd:dateTime ;
-        dcterms:contributor <https://orcid.org/0000-0003-1681-4036> ;
-        dcterms:modified "2023-11-04T12:00:00+00:00"^^xsd:dateTime ;
-        rdfs:label "GenericExtend"@en, "GenericExtend"@de, "GenericExtend"@fr, "GenericExtend"@it ;
-        :givesPermission :DATA_EXTEND ;
-        :definedByProject :SystemProject .
-    :GenericUpdate a :PermissionSet ;
-        dcterms:creator <https://orcid.org/0000-0003-1681-4036> ;
-        dcterms:created "2023-11-04T12:00:00+00:00"^^xsd:dateTime ;
-        dcterms:contributor <https://orcid.org/0000-0003-1681-4036> ;
-        dcterms:modified "2023-11-04T12:00:00+00:00"^^xsd:dateTime ;
-        rdfs:label "GenericUpdate"@en, "GenericUpdate"@de, "GenericUpdate"@fr, "GenericUpdate"@it ;
-        :givesPermission :DATA_UPDATE ;
+        rdfs:label "Unknown user"@en, "Unbekannte(r) Nutzer:in"@de, "Utilisateur inconnu"@fr, "Utenti sconosciuti"@it ;
         :definedByProject :SystemProject .
     #==================================================================
@@ -156,13 +128,13 @@
         schema:givenName "Lukas"^^xsd:string ;
         schema:email "lukas.rosenthaler@unibas.ch"^^xsd:string ;
         :credentials "$2b$12$jWCJZ.qdXE9MSCPdUc0y4.9swWYJcgLZn0ePtRTu/7U8qH/OXXkB2"^^xsd:string ;
-        :inProject :SystemProject, :HyperHamlet, <http://www.salsah.org/version/2.0/SwissBritNet>, :SharedProject ;
-        :hasPermissions :GenericRestricted, :GenericView ;
+        :inProject :SystemProject, :SharedProject ;
+        :hasRole :Unknown ;
         :isActive true .
     <<<https://orcid.org/0000-0003-1681-4036> :inProject :SystemProject>> :hasAdminPermission :ADMIN_OLDAP .
-    <<<https://orcid.org/0000-0003-1681-4036> :inProject :SharedProject>> :hasAdminPermission
-            :ADMIN_RESOURCES, :ADMIN_MODEL, :ADMIN_LISTS .
+    <<<https://orcid.org/0000-0003-1681-4036> :inProject :SharedProject>> :hasAdminPermission :ADMIN_OLDAP .
+    <<<https://orcid.org/0000-0003-1681-4036> :hasRole :Unknown>> :hasDefaultDataPermission :DATA_PERMISSIONS .
     <urn:uuid:7e56b6c4-42e5-4a9d-94cf-d6e22577fb4b> a oldap:User ;
@@ -175,20 +147,9 @@
         schema:givenName "John"^^xsd:string ;
         schema:email "john.doe@nowhere.com"^^xsd:string ;
         :credentials "*"^^xsd:string ;
-        :hasPermissions :GenericRestricted ;
+        :hasRole :Unknown ;
         :isActive true .
-    <https://orcid.org/0000-0001-9277-3921> a oldap:User ;
-        dcterms:creator <https://orcid.org/0000-0003-1681-4036> ;
-        dcterms:created "2023-11-04T12:00:00+00:00"^^xsd:dateTime ;
-        dcterms:contributor <https://orcid.org/0000-0003-1681-4036> ;
-        dcterms:modified "2023-11-04T12:00:00+00:00"^^xsd:dateTime ;
-        :userId "bugsbunny"^^xsd:NCName ;
-        schema:familyName "Bunny"^^xsd:string ;
-        schema:givenName "Bugs"^^xsd:string ;
-        schema:email "bugs.bunny@warnerbrothers.com"^^xsd:string ;
-        :credentials "$2b$12$YK2g0KFvkelCZwCcE38UguIE/3aMPjO4XIX.9FJgYJoz2m.5sDlZK"^^xsd:string ; # "DuffyDuck"
-        :inProject :HyperHamlet ;
-        :hasPermissions :GenericView ;
-        :isActive false .
+    <<<urn:uuid:7e56b6c4-42e5-4a9d-94cf-d6e22577fb4b> :hasRole :Unknown>> :hasDefaultDataPermission :DATA_RESTRICTED .
 }

oldaplib/ontologies/gaga.trigs ADDED Viewed

@@ -0,0 +1,23 @@
+@prefix rdf: <http://www.w3.org/1999/02/22-rdf-syntax-ns#> .
+@prefix rdfs: <http://www.w3.org/2000/01/rdf-schema#> .
+@prefix owl: <http://www.w3.org/2002/07/owl#> .
+@prefix xsd: <http://www.w3.org/2001/XMLSchema#> .
+@prefix o: <http://www.ooo.org/ns#> .
+@prefix : <https://gaga.com/> .
+:test {
+    :Unknown o:hasName "Unknown" .
+    :UserA o:hasName "UserA" ;
+        o:hasRole :Unknown .
+    :InstanceA o:hasName "InstanceA" ;
+        o:attachedToRole :Unknown .
+    <<:InstanceA o:attachedToRole :Unknown>> o:hasDataPermission 2 .
+}

oldaplib/ontologies/oldap.trig CHANGED Viewed

@@ -1,3 +1,5 @@
+@prefix owl: <http://www.w3.org/2002/07/owl#> .
+@prefix owl: <http://www.w3.org/2002/07/owl#> .
 @prefix rdf: <http://www.w3.org/1999/02/22-rdf-syntax-ns#> .
 @prefix rdfs: <http://www.w3.org/2000/01/rdf-schema#> .
 @prefix owl: <http://www.w3.org/2002/07/owl#> .
@@ -39,7 +41,7 @@
     # This property will be reused wherever we need a namespace IRI
     #
     :namespaceIriShape a sh:PropertyShape ;
-        sh:targetClass :namespaceIri ;
+        sh:path :namespaceIri ;
         dcterms:creator <https://orcid.org/0000-0003-1681-4036> ;
         dcterms:created "2023-11-04T12:00:00+00:00"^^xsd:dateTime ;
         dcterms:contributor <https://orcid.org/0000-0003-1681-4036> ;
@@ -120,7 +122,7 @@
     #
     # SHACL definition of the oldap:AdminPermission class. The AdminPermission instances are attached as
     # RDF*star to the triple that defines to which oldap:project as oldap:User belongs to.
-    # E.g. <<<https://orcid.org/0000-0003-1681-4036> :inProject :SystemProject>> :hasRights :ADMIN_PROJECT .
+    # E.g. <<<https://orcid.org/0000-0003-1681-4036> :inProject :SystemProject>> :hasAdminPermission :ADMIN_PROJECT .
     #
     :AdminPermissionShape a sh:NodeShape ;
         sh:targetClass :AdminPermission ;
@@ -146,10 +148,31 @@
             sh:uniqueLang true ;
         ] .
+    #
+    # Property to assign a admin permission
+    # E.g. <<<https://orcid.org/0000-0003-1681-4036> :inProject :SystemProject>> :hasAdminPermission :ADMIN_PROJECT .
+    #
     :hasAdminPermissionShape a sh:PropertyShape ;
         sh:path :hasAdminPermission ;
+        :statementProperty true ;
+        dcterms:creator <https://orcid.org/0000-0003-1681-4036> ;
+        dcterms:created "2023-11-04T12:00:00+00:00"^^xsd:dateTime ;
+        dcterms:contributor <https://orcid.org/0000-0003-1681-4036> ;
+        dcterms:modified "2023-11-04T12:00:00+00:00"^^xsd:dateTime ;
         sh:class :AdminPermission .
+    :hasDefaultDataPermissionShape a sh:PropertyShape ;
+        sh:path :hasDefaultDataPermission ;
+        :statementProperty true ;
+        dcterms:creator <https://orcid.org/0000-0003-1681-4036> ;
+        dcterms:created "2023-11-04T12:00:00+00:00"^^xsd:dateTime ;
+        dcterms:contributor <https://orcid.org/0000-0003-1681-4036> ;
+        dcterms:modified "2023-11-04T12:00:00+00:00"^^xsd:dateTime ;
+        sh:class :DataPermission .
+    #
+    # Data permission shape
+    #
     :DataPermissionShape a sh:NodeShape ;
         sh:targetClass :DataPermission ;
         dcterms:creator <https://orcid.org/0000-0003-1681-4036> ;
@@ -185,18 +208,48 @@
             sh:uniqueLang true ;
         ] .
+    # TODO: !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
+    # SHACL to define a permission sets. A permission set assigns data permissions to both
+    # a given user and a given data instance.
+    # Let's assume a PermissionSet instance :MyPermSet which I will use. Then I can give the following
+    # permissions:
+    #
+    #  <<:MyInstance oldap:attachedToRole :MyRole>> oldap:hasDataPermission :DATA_EXTEND .
+    #
+    # A user with:
+    #
+    # :ThisUser oldap:hasRole :MyRole, MyRole2 .
+    #
+    # we may add default values that are proposed as standard values for creating instances:
+    #
+    # <<:ThisUser oldap:hasRole :MyRole>> oldap:hasDefaultDataPermission :DATA_EXTEND
+    # <<:ThisUser oldap:hasRole :MyRole2>> oldap:hasDefaultDataPermission :DATA_RESTRICTED
+    #
+    # Thus, the user should have maximal :DATA_VIEW access to the given instance
     #
-    # SHACL to define a permission sets. For each resource, there are RDF-triples which define the
-    # permissions for permission sets.
+    #    PREFIX : <https://gaga.com/>
+    #    PREFIX o: <http://www.ooo.org/ns#>
     #
-    :PermissionSetShape a sh:NodeShape ;
-        sh:targetClass :PermissionSet ;
+    #    SELECT ?predicate ?value ?permval
+    #    WHERE {
+    #        GRAPH :test {
+    #            :InstanceA ?predicate ?value ;
+    #            	o:attachedToRole ?role .
+    #            :UserA o:hasRole ?role .
+    #           <<:InstanceA  o:attachedToRole ?role>> o:dataPermission ?permval .
+    #        }
+    #        FILTER(?permval >= 1)
+    #   }
+    #
+    :RoleShape a sh:NodeShape ;
+        sh:targetClass :Role ;
         dcterms:creator <https://orcid.org/0000-0003-1681-4036> ;
         dcterms:created "2023-11-04T12:00:00+00:00"^^xsd:dateTime ;
         dcterms:contributor <https://orcid.org/0000-0003-1681-4036> ;
         dcterms:modified "2023-11-04T12:00:00+00:00"^^xsd:dateTime ;
-        rdfs:label "Permission set"@en, "Berechtigungssatz"@de, "Ensemble de permissions"@fr, "Set di permessi"@it ;
-        rdfs:comment "A set of permissions a user and a resource grants."@en ;
+        rdfs:label "Permission role"@en, "Berechtigungsrolle"@de, "Rôle d'autorisation"@fr, "Ruolo di autorizzazione"@it ;
+        rdfs:comment "Defines a role regarding data permissions, e.g. Editor, Unknown, Contributor etc."@en ;
         sh:property [
             sh:path rdf:type ;
         ] ;
@@ -224,25 +277,6 @@
             sh:maxCount 1 ;
             sh:minCount 1 ;
         ] ;
-        sh:property [
-            sh:path :givesPermission ;
-            dcterms:creator <https://orcid.org/0000-0003-1681-4036> ;
-            dcterms:created "2023-11-04T12:00:00+00:00"^^xsd:dateTime ;
-            dcterms:contributor <https://orcid.org/0000-0003-1681-4036> ;
-            dcterms:modified "2023-11-04T12:00:00+00:00"^^xsd:dateTime ;
-            sh:maxCount 1 ;
-            sh:minCount 1 ;
-            sh:class :DataPermission ;
-            sh:in (:DATA_RESTRICTED :DATA_VIEW :DATA_EXTEND :DATA_UPDATE :DATA_DELETE :DATA_PERMISSIONS) ;
-            sh:name "Data permission"@en,
-                    "Data permission"@de,
-                    "Data permission"@fr,
-                    "Data permission"@it ;
-            sh:description "Permission type to access a resource"@en,
-                           "Berechtigungstyp für Ressource"@de,
-                           "Type d'autorisation pour accéder à une ressource"@fr,
-                           "Tipo di autorizzazione per accedere a una risorsa"@it ;
-        ] ;
         sh:property [
             sh:path :definedByProject ;
             dcterms:creator <https://orcid.org/0000-0003-1681-4036> ;
@@ -253,10 +287,10 @@
             sh:maxCount 1 ;
             sh:class :Project;
             sh:name "Defined by"@en, "Definiert durch"@de, "Défini par"@fr, "Definito da"@it ;
-            sh:description "Permission set is define by project"@en,
-                           "Der Berechtigungssatz wird definiert durch das Projekt"@de,
-                           "L'ensemble des autorisations est défini par le projet"@fr,
-                           "Il set di permessi è definito dal progetto"@it ;
+            sh:description "Permission role is define by project"@en,
+                           "Der Berechtigungsrolle wird definiert durch das Projekt"@de,
+                           "Le rôle d'autorisation est défini par projet."@fr,
+                           "Il ruolo di autorizzazione è definito dal progetto"@it ;
         ] ;
         sh:property [
             sh:path rdfs:label ;
@@ -511,12 +545,12 @@
             sh:datatype xsd:boolean ;
         ] ;
         sh:property [
-            sh:path :hasPermissions ;
+            sh:path :hasRole ;
             dcterms:creator <https://orcid.org/0000-0003-1681-4036> ;
             dcterms:created "2023-11-04T12:00:00+00:00"^^xsd:dateTime ;
             dcterms:contributor <https://orcid.org/0000-0003-1681-4036> ;
             dcterms:modified "2023-11-04T12:00:00+00:00"^^xsd:dateTime ;
-            sh:class :PermissionSet ;
+            sh:class :Role ;
         ] .
     :inProjectStatementShape a sh:NodeShape ;
@@ -525,6 +559,12 @@
             sh:class :AdminPermission ;
         ] .
+    :hasRoleStatementShape a sh:NodeShape ;
+        sh:property [
+            sh:path :hasDefaultDataPermission ;
+            sh:class :DataPermission ;
+        ] .
     #
     # Hierarchical lists are implemented using :List's and :ListNodes. We will use some skos vocabulary
     #
@@ -678,6 +718,24 @@
         ] ;
         sh:closed true .
+    ###########################################################################
+    # Statment property (RDF#star) for assigning a data permission to a :Thing
+    ###########################################################################
+    :hasDataPermissionShape a sh:PropertyShape ;
+        :statementProperty true ;
+        sh:targetClass :hasDataPermission ;
+        dcterms:creator <https://orcid.org/0000-0003-1681-4036> ;
+        dcterms:created "2023-11-04T12:00:00+00:00"^^xsd:dateTime ;
+        dcterms:contributor <https://orcid.org/0000-0003-1681-4036> ;
+        dcterms:modified "2023-11-04T12:00:00+00:00"^^xsd:dateTime ;
+        sh:name "has data permission"@en ;
+        sh:description "Assigns a data permission"@en ;
+        sh:class :DataPermission .
+    ###########################################################################
+    # :Thing is a superclass of all instance classes that OLDAP defines
+    ###########################################################################
     :ThingShape a sh:NodeShape ;
         sh:targetClass :Thing ;
         dcterms:creator <https://orcid.org/0000-0003-1681-4036> ;
@@ -728,12 +786,12 @@
             sh:datatype xsd:dateTimeStamp ;
         ] ;
         sh:property [
-            sh:path :grantsPermission ;
+            sh:path :attachedToRole ;
             dcterms:creator <https://orcid.org/0000-0003-1681-4036> ;
             dcterms:created "2023-11-04T12:00:00+00:00"^^xsd:dateTime ;
             dcterms:contributor <https://orcid.org/0000-0003-1681-4036> ;
             dcterms:modified "2023-11-04T12:00:00+00:00"^^xsd:dateTime ;
-            sh:class :PermissionSet ;
+            sh:class :Role ;
         ] .
 }
@@ -767,8 +825,11 @@
     ###############################################################################
     # Standard Properties that are used everywhere
     ###############################################################################
-    :hasAdminPermission a owl:ObjectProperty ;
-        rdfs:range :AdminPermission .
+#    :hasAdminPermission a owl:ObjectProperty ;
+#        rdfs:range :AdminPermission .
+#
+#    :hasDefaultDataPermission a owl:Objectproperty ;
+#        rdfs:range :DataPermission .
     :namespaceIri a owl:ObjectProperty ;
         dcterms:creator <https://orcid.org/0000-0003-1681-4036> ;
@@ -838,28 +899,20 @@
         rdfs:domain :Thing ;
         rdfs:range xsd:dateTimeStamp .
-    :grantsPermission rdf:type owl:ObjectProperty ;
+    :attachedToRole rdf:type owl:ObjectProperty ;
         dcterms:creator <https://orcid.org/0000-0003-1681-4036> ;
         dcterms:created "2023-11-04T12:00:00Z"^^xsd:dateTime ;
         dcterms:contributor <https://orcid.org/0000-0003-1681-4036> ;
         dcterms:modified "2023-11-04T12:00:00Z"^^xsd:dateTime ;
         rdfs:domain :Thing ;
-        rdfs:range :PermissionSet .
-    :givesPermission rdf:type owl:ObjectProperty ;
-        dcterms:creator <https://orcid.org/0000-0003-1681-4036> ;
-        dcterms:created "2023-11-04T12:00:00Z"^^xsd:dateTime ;
-        dcterms:contributor <https://orcid.org/0000-0003-1681-4036> ;
-        dcterms:modified "2023-11-04T12:00:00Z"^^xsd:dateTime ;
-        rdfs:domain :PermissionSet ;
-        rdfs:range :DataPermission .
+        rdfs:range :Role .
     :definedByProject rdf:type owl:ObjectProperty ;
         dcterms:creator <https://orcid.org/0000-0003-1681-4036> ;
         dcterms:created "2023-11-04T12:00:00Z"^^xsd:dateTime ;
         dcterms:contributor <https://orcid.org/0000-0003-1681-4036> ;
         dcterms:modified "2023-11-04T12:00:00Z"^^xsd:dateTime ;
-        rdfs:domain :PermissionSet ;
+        rdfs:domain :Role ;
         rdfs:range :Project .
@@ -899,14 +952,30 @@
         rdfs:domain :User ;
         rdfs:range xsd:boolean .
-    :hasPermissions rdf:type owl:ObjectProperty ;
+    :hasRole rdf:type owl:ObjectProperty ;
         dcterms:creator <https://orcid.org/0000-0003-1681-4036> ;
         dcterms:created "2023-11-04T12:00:00Z"^^xsd:dateTime ;
         dcterms:contributor <https://orcid.org/0000-0003-1681-4036> ;
         dcterms:modified "2023-11-04T12:00:00Z"^^xsd:dateTime ;
         rdfs:domain :User ;
-        rdfs:range :PermissionSet .
+        rdfs:range :Role .
+    #
+    # RDF*Star property to assign an admin permission to a user/project combination
+    #
+    :hasAdminPermission a rdf:Property, owl:ObjectProperty ;  # TODO: May be owl:ObjectProperty interferes and have to be delete
+        dcterms:creator <https://orcid.org/0000-0003-1681-4036> ;
+        dcterms:created "2023-11-04T12:00:00+00:00"^^xsd:dateTime ;
+        dcterms:contributor <https://orcid.org/0000-0003-1681-4036> ;
+        dcterms:modified "2023-11-04T12:00:00+00:00"^^xsd:dateTime ;
+        rdfs:range :AdminPermission .
+    :hasDefaultDataPermission a rdf:Property, owl:ObjectProperty ;  # TODO: May be owl:ObjectProperty interferes and have to be delete
+        dcterms:creator <https://orcid.org/0000-0003-1681-4036> ;
+        dcterms:created "2023-11-04T12:00:00+00:00"^^xsd:dateTime ;
+        dcterms:contributor <https://orcid.org/0000-0003-1681-4036> ;
+        dcterms:modified "2023-11-04T12:00:00+00:00"^^xsd:dateTime ;
+        rdfs:range :DataPermission .
     ###############################################################################
     # Properties used for :Project
@@ -960,6 +1029,19 @@
         rdfs:domain :OldapListNode ;
         rdfs:range xsd:positiveInteger .
+    ###############################################################################
+    # Properties used for assigning data permission to an instance (RDF*star)
+    ###############################################################################
+    #
+    # Example: <<:MyInstance :attachedToRole>> :hasDataPermission :DATA_RESTRICTED .
+    #
+    :hasDataPermission rdf:type rdf:Property, owl:ObjectProperty ;
+        dcterms:creator <https://orcid.org/0000-0003-1681-4036> ;
+        dcterms:created "2023-11-04T12:00:00+00:00"^^xsd:dateTime ;
+        dcterms:contributor <https://orcid.org/0000-0003-1681-4036> ;
+        dcterms:modified "2023-11-04T12:00:00+00:00"^^xsd:dateTime ;
+        rdfs:range :DataPermission .
     #################################################################
@@ -1063,10 +1145,10 @@
     #################################################################
-    # PermissionSet class (Holding class of resource permissions)
+    # Role class (Holding class of resource permissions)
     #################################################################
-    :PermissionSet a owl:class ;
+    :Role a owl:class ;
         dcterms:creator <https://orcid.org/0000-0003-1681-4036> ;
         dcterms:created "2023-11-04T12:00:00Z"^^xsd:dateTime ;
         dcterms:contributor <https://orcid.org/0000-0003-1681-4036> ;
@@ -1096,12 +1178,6 @@
                 owl:onDataRange xsd:dateTime ;
                 owl:qualifiedCardinality "1"^^xsd:nonNegativeInteger ;
             ],
-            [
-                rdf:type owl:Restriction ;
-                owl:onProperty :givesPermission ;
-                owl:onClass :DataPermission ;
-                owl:minQualifiedCardinality "0"^^xsd:nonNegativeInteger ;
-            ],
             [
                 rdf:type owl:Restriction ;
                 owl:onProperty :definedByProject ;
@@ -1269,9 +1345,9 @@
             ] ,
             [
                 rdf:type owl:Restriction ;
-                owl:onProperty :hasPermissions ;
+                owl:onProperty :hasRole ;
                 owl:minQualifiedCardinality "0"^^xsd:nonNegativeInteger ;
-                owl:onClass :PermissionSet
+                owl:onClass :Role
             ] .
@@ -1427,9 +1503,9 @@
             ] ,
             [
                 rdf:type owl:Restriction ;
-                owl:onProperty :grantsPermission ;
+                owl:onProperty :attachedToRole ;
                 owl:minQualifiedCardinality "0"^^xsd:nonNegativeInteger ;
-                owl:onClass :PermissionSet
+                owl:onClass :Rolse
             ] ;
         rdfs:comment "General super class of all things (resources) in tghe OMAS universe"@en .

oldaplib 0.3.29__py3-none-any.whl → 0.4.0__py3-none-any.whl

oldaplib 0.3.29py3-none-any.whl → 0.4.0py3-none-any.whl