I notice that the default user making third party authentication is adminsparql is possible to associate third party user to a specific Virtuoso user .
Ex.
user: jack ------> user: dba
user: john ------> user: adminsparql
user jane- ------> user: SPARQL
…
Hi @kidehen and @hwilliams maybe I am missing something, but the propose is to give different role to each third party user, with different privileges.
All matters of identity and resource access controls are handled by the VAL module i.e., it doesn’t need to be tampered with at any level regarding these matters.
Based on the above, what is it that you are trying to achieve in regards to the requests you are making?
Identity – entities are named using WebIDs, NetIDs (i.e., beyond HTTP e.g., ldap:), or internally using SQL User Accounts Identifiers
Identification – via credentials where resolution is handled by naming method
Authentication – using a variety of protocols (Digest, OpenID Connect + OAuth, OAuth, TLS via extended handshakes re credentials associated with WebIDs and NetIDs)
Authorization – via attribute-based access controls (ABAC) defined using RDF statements, courtesy of terms from the WebACL Ontology
VAL is the layer that handles all of the above. The user simply needs to describe access controls using RDF statements leaving VAL and Virtuoso’s underlying Graph Security Layer to handle the rest.
The very latest edition of VAL will also install a basic rule to simplify matters i.e., a rule that restricts use of the sponger middleware layer to authenticated users using a variety of protocols.