OwnYourData
diff --git a/‎cli/docker/Dockerfile
Lines changed: 3 additions & 3 deletions b/‎cli/docker/Dockerfile
Lines changed: 3 additions & 3 deletions
diff --git a/‎repo2/Gemfile.extend
Lines changed: 5 additions & 1 deletion b/‎repo2/Gemfile.extend
Lines changed: 5 additions & 1 deletion
diff --git a/‎repo2/app/controllers/api/v1/resources_controller.rb
Lines changed: 172 additions & 0 deletions b/‎repo2/app/controllers/api/v1/resources_controller.rb
Lines changed: 172 additions & 0 deletions
diff --git a/‎repo2/app/controllers/api/v1/soya_controller.rb
Lines changed: 39 additions & 8 deletions b/‎repo2/app/controllers/api/v1/soya_controller.rb
Lines changed: 39 additions & 8 deletions
diff --git a/‎repo2/app/controllers/dri_controller.rb
Lines changed: 31 additions & 2 deletions b/‎repo2/app/controllers/dri_controller.rb
Lines changed: 31 additions & 2 deletions
diff --git a/‎repo2/app/helpers/hooks_helper.rb
Lines changed: 3 additions & 0 deletions b/‎repo2/app/helpers/hooks_helper.rb
Lines changed: 3 additions & 0 deletions
diff --git a/‎repo2/app/helpers/soya_helper.rb
Lines changed: 17 additions & 1 deletion b/‎repo2/app/helpers/soya_helper.rb
Lines changed: 17 additions & 1 deletion
@@ -1,4 +1,4 @@
-FROM node:19 as node_builder
+FROM node:19 AS node_builder
 
 WORKDIR /app
 ENV NODE_ENV=development
@@ -10,7 +10,7 @@ RUN npm install && \
 
 #########################################
 
-FROM maven:3-openjdk-8 as java_builder
+FROM maven:3-openjdk-8 AS java_builder
 
 RUN mkdir -p /app && \
     cd /app && \
@@ -22,7 +22,7 @@ WORKDIR /app
 #########################################
 
 FROM ruby:3.2.2-alpine
-MAINTAINER "Christoph Fabianek" christoph@ownyourdata.eu
+LABEL org.opencontainers.image.authors="Christoph Fabianek <christoph@ownyourdata.eu>"
 
 RUN addgroup -S user && \
     adduser -S user -G user && \
 
@@ -1 +1,5 @@
-# Storage Provder
+# turtle output
+gem 'rdf'
+gem 'rdf-normalize'
+gem 'rdf-turtle'
+gem 'json-ld'
@@ -0,0 +1,172 @@
+module Api
+    module V1
+        class ResourcesController < ApiController
+
+            include UsersHelper
+
+            # possible values vor ENV["AUTH"]
+            # - empty, "false" => no authorization necessary
+            # - "optional" => optional authorization
+            # - "true" => require key&secret
+            # - "idaustria" => show "Login with ID Austria" button and anyone with ID Austria can login
+            # - "idaustria_restrict" => show "Login with ID Austria" button and bPK is mapped to OAuth Apps
+            def active
+                env_auth = ENV["AUTH"].to_s.downcase
+                if ENV["AUTH_SCOPE"].nil?
+                    retVal = { "active": true,
+                               "auth": !(env_auth == "" || env_auth == "false") ,
+                               "repos": false
+                             }
+                else
+                    retVal = { "active": true,
+                               "auth": !(env_auth == "" || env_auth == "false") ,
+                               "repos": false,
+                               "scopes": JSON.parse(ENV["AUTH_SCOPE"].to_s)
+                             }
+                end
+                if env_auth == "optional"
+                    retVal["auth"] = false
+                    retVal["auth_method"] = {mode: "optional"}
+                end
+                if !doorkeeper_name.nil?
+                    retVal["user"] = {user_name: doorkeeper_name, full_name: "Administrator", organization: "OwnYourData"}
+                end
+                if env_auth.start_with?("idaustria")
+                    uid = SecureRandom.uuid
+                    IdaustriaUuid.where('created_at < ?', 2.hours.ago).destroy_all
+                    @ida = IdaustriaUuid.new(uuid: uid)
+                    ida_short = env_auth.split(':').last rescue ""
+                    if @ida.save && ida_short != ""
+                        eid_url = 'https://eid.oesterreich.gv.at/auth/idp/profile/oidc/authorize'
+                        eid_url += '?response_type=code'
+                        eid_url += '&client_id=https%3A%2F%2Fidaustria.ownyourdata.eu'
+                        eid_url += '&redirect_uri=https%3A%2F%2Fidaustria.ownyourdata.eu%2Fconnect'
+                        eid_url += '&scope=openid+profile+eid'
+                        eid_url += '&state=' + ida_short + ':' + uid
+                        retVal["oauth"] = [{
+                            link: eid_url,
+                            title: {
+                                en: "Login with ID Austria",
+                                de: "mit ID Austria einloggen",
+                                pic: "data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAQAAAC1HAwCAAAAC0lEQVR42mNkYAAAAAYAAjCB0C8AAAAASUVORK5CYII="
+                            }
+                        }]
+                    end
+                end
+
+                render json: retVal, 
+                       status: 200
+            end
+
+            def info
+                container_name = ENV["CONTAINER_NAME"] || "Container Name"
+                container_description = ENV["CONTAINER_DESCRIPTION"] || "here is the description and purpose of the container"
+                retVal = {
+                    "name": container_name.to_s,
+                    "description": container_description.to_s
+                }
+                render json: retVal, 
+                       status: 200
+            end
+
+            def idaustria
+
+                STDOUT.sync = true
+                logger = Logger.new(STDOUT)
+                level ||= LOGLEVELS.index ENV.fetch("LOG_LEVEL","INFO")
+                level ||= Logger::INFO
+                logger.level = level
+
+                # decode token ---------------------
+                token = params[:token] rescue nil
+                data = JWT.decode(token, nil, false).first rescue nil
+                if data.nil?
+                    logger.error("invalid token '" + token.to_s + "'")
+                    redirect_to '/'
+                    return
+                end
+
+                # check state ----------------------
+                state = data['state'].split(':').last
+                @idu = IdaustriaUuid.find_by_uuid(state) rescue nil
+                if @idu.nil?
+                    logger.error("invalid state '" + state.to_s + "'")
+                    redirect_to '/'
+                    return
+                end
+                @idu.delete
+
+                # check signature ------------------
+                sig = data.delete("sig") rescue ""
+                my_hash = Oydid.hash(Oydid.canonical(data)) rescue ""
+                publicKey = Oydid.read(ENV['IDAUSTRIA_DID'], {}).first["doc"]["key"].split(':').first rescue ""
+                check, msg = Oydid.verify(my_hash, sig, publicKey)
+                if !check
+                    logger.error("invalid signature '" + sig.to_s + "'")
+                    redirect_to '/'
+                    return
+                end
+
+                # check expired token --------------
+                exp = data["exp"].to_i
+                if exp < Time.now.to_i
+                    logger.error("expired token '" + exp.to_s + "'")
+                    redirect_to '/'
+                    return
+                end
+
+                # check valid bpk ------------------
+                bpk = data["urn:pvpgvat:oidc.bpk"].to_s
+                if bpk == ""
+                    logger.error("empty bpk")
+                    redirect_to '/'
+                    return
+                end
+
+                # document login with ID Austria ---
+                logger.info("ID Austria Login from: " + data["given_name"].to_s + " " + data["family_name"].to_s + " (" + bpk + ")")
+
+                env_auth = ENV["AUTH"].to_s.downcase.split(':').first
+                ida_scope = ENV["IDAUSTRIA_SCOPE"] || "read"
+                case env_auth
+                when "idaustria"
+                    # variant #1: temporary credentials
+                    @da = Doorkeeper::Application.find_by_bpk(bpk)
+                    if @da.nil?
+                        @da = Doorkeeper::Application.new(
+                                    name: "ida_login_" + SecureRandom.uuid,
+                                    redirect_uri: "urn:ietf:wg:oauth:2.0:oob",
+                                    scopes: ida_scope,
+                                    bpk: bpk,
+                                    temp: true)
+                        if !@da.save
+                            redirect_to '/'
+                        end
+                    end
+                    Doorkeeper::Application.where(temp: true).where('updated_at < ?', 2.hours.ago).destroy_all
+                else
+                    # variant #2: selected Oauth
+                    @da = Doorkeeper::Application.find_by_bpk(bpk)
+                    if @da.nil?
+                        logger.error("invalid bpk '" + bpk + "'")
+                        redirect_to '/'
+                        return
+                    end
+                end
+
+                redirect_to '/?APP_KEY=' + @da.uid.to_s + "&APP_SECRET=" + @da.secret
+            end
+
+        end
+    end
+
+    # template for multiple versions -> copy into folder controllers/api/v2
+    # module V2
+    #     class ResourcesController < ApiController
+    #         def active2
+    #             render json: [2], 
+    #                    status: 200
+    #         end
+    #     end
+    # end
+end
@@ -14,12 +14,21 @@ def read
                     render json: {"error": "not found"},
                            status: 404
                 else
-                    retval = {
-                      content: @store.item,
-                      "id": @store.id,
-                      "dri": @store.soya_dri,
-                      "soya_name": @store.soya_name,
-                    }
+                    if @store.soya_tag == "current"
+                        retval = {
+                          content: @store.item,
+                          "id": @store.id,
+                          "dri": @store.soya_name,
+                          "soya_name": @store.soya_name,
+                        }
+                    else
+                        retval = {
+                          content: @store.item,
+                          "id": @store.id,
+                          "dri": @store.soya_dri,
+                          "soya_name": @store.soya_name,
+                        }
+                    end                        
                     render json: retval.to_json,
                            status: 200
                 end
@@ -49,7 +58,19 @@ def query
                         end
                     end
                 end
-                render json: retVal,
+
+                sortedRetVal = retVal.sort_by do |i|
+                  name = i[:name]
+                  
+                  # Check if the name starts with "zQm" (case-sensitive)
+                  if name.start_with?("zQm")
+                    [1, name]  # Group for "zQm", sort alphabetically within this group
+                  else
+                    [0, name.downcase]  # Group for all other names, case-insensitive alphabetical sorting
+                  end
+                end
+
+                render json: sortedRetVal,
                        status: 200
             end
 
@@ -82,7 +103,17 @@ def info
                     end
                   end
                 end
-                render json: retVal,
+                sortedRetVal = retVal.sort_by do |i|
+                  name = i[:name]
+                  
+                  # Check if the name starts with "zQm" (case-sensitive)
+                  if name.start_with?("zQm")
+                    [1, name]  # Group for "zQm", sort alphabetically within this group
+                  else
+                    [0, name.downcase]  # Group for all other names, case-insensitive alphabetical sorting
+                  end
+                end
+                render json: sortedRetVal,
                        status: 200
             end
 
 
@@ -24,6 +24,26 @@ def read
                status: 200
     end
 
+    def read_ttl
+        store_id, msg = get_soya(params[:dri])
+        if store_id.nil?
+            render json: {"error": "not found"},
+                   status: 404
+            return
+        end
+        @store = Store.find(store_id) rescue nil
+        if @store.nil?
+            render json: {"error": "not found"},
+                   status: 404
+            return
+        end
+
+        jsonld = @store.item
+        graph = RDF::Graph.new << JSON::LD::Reader.new(@store.item.to_json)
+        render plain: graph.dump(:turtle, standard_prefixes: true),
+               status: 200
+    end
+
     def read_yaml
         store_id, msg = get_soya(params[:dri])
         if store_id.nil?
@@ -116,8 +136,17 @@ def info
                     date: r.updated_at, 
                     yaml: r.yaml == 'true'
                 }
+            end rescue []
+        sorted_history = history.sort_by do |i|
+            name = i[:schema]
+          
+            # Check if the name starts with "zQm" (case-sensitive)
+            if name.start_with?("zQm")
+                [1, name]  # Group for "zQm", sort alphabetically within this group
+            else
+                [0, name.downcase]  # Group for all other names, case-insensitive alphabetical sorting
             end
-            .sort_by{ |i| i["date"] } rescue []
+        end
 
         bases = []
         overlays = []
@@ -150,7 +179,7 @@ def info
                 end
             end unless graph == []
         end
-        render json: {"name": soya_name, "dri": soya_dri, "history": history, "bases": bases.uniq, "overlays": overlays.uniq},
+        render json: {"name": soya_name, "dri": soya_dri, "history": sorted_history, "bases": bases.uniq, "overlays": overlays.uniq},
                status: 200
 
     end
 
@@ -1,11 +1,14 @@
 module HooksHelper
     def write_hook(data)
+        puts "write_hook:"
+        puts data.to_json
         data["processed"] = 1
         data["responses"] = [{id: data[:id], status: 200}]
 
     end
 
     def read_hook(data)
+        puts "read_hook:"
         puts data.to_json
         @rh_store = Store.find(data["id"]) rescue nil
         if !@rh_store.nil?
 
@@ -11,7 +11,12 @@ def get_soya(input)
         found = false
         @gs_store = Store.find_by_soya_dri(input)
         if @gs_store.nil?
-            soya_name,c,soya_tag = input.rpartition(':')
+            if input.include?(':')
+                soya_name,c,soya_tag = input.rpartition(':')
+            else
+                soya_name = input
+                soya_tag = "current"
+            end
             if soya_name != '' && soya_tag != ''
                 @gs_store = Store.where(soya_name: soya_name, soya_tag: soya_tag)
                 if !@gs_store.nil? && @gs_store.length > 0
@@ -70,4 +75,15 @@ def similarity(vec1, vec2)
         return simvec.inject(:+).to_f / simvec.length # average of simvec
     end
 
+    def deep_transform_keys_to_strings(value)
+        case value
+        when Hash
+            value.transform_keys(&:to_s).transform_values { |v| deep_transform_keys_to_strings(v) }
+        when Array
+            value.map { |v| deep_transform_keys_to_strings(v) }
+        else
+            value
+        end
+    end
+
 end