Merge to upstream/cat fr co 03 part 2 trust framework interface compliance check#40
Open
noVaSon wants to merge 21 commits into
Conversation
…pping to ServiceOffering
…pping to ServiceOffering
* [CAT-FR-CO-05] on demand validation docs
- Add On-Demand Asset Validation Service section: AssetValidationService,
ValidationStrategy pattern (ShaclValidationStrategy, JsonSchemaValidationStrategy,
XmlSchemaValidationStrategy), ShaclValidationExecutor shared engine,
multi-asset cardinality rules, max-assets-per-request and timeout config
- Document asset deletion cascade: AssetDeletedEvent -> ValidationResultCleanupListener
-> ValidationResultStore.deleteByAssetId (BEFORE_COMMIT atomicity)
- validator_type column lists SHACL, JSON_SCHEMA, XML_SCHEMA, TRUST_FRAMEWORK
- On-demand validation endpoint is POST /assets/validate
- ValidationResultStore class diagram includes findAll, syncToGraph, deleteByAssetId
- SchemaValidationService is scoped to the upload/revalidation path
- Admin table reflects JSON Schema and XML Schema wiring through AssetValidationService
- Component table refers to "asset validation"
- Verify Credential procedure (chapter 6): on-demand validation routes through
AssetValidationService (SHACL/JSON/XML); SchemaValidationService remains the
upload-flow path, gated by federated-catalogue.verification.schema
- Delete Participant sequence (chapter 6): note the AssetDeletedEvent cascade that
cleans up validation results before commit
- Input Parsing Security cross-cutting concept (chapter 8): XXE hardening
(FEATURE_SECURE_PROCESSING + empty external DTD/schema access), SSRF protection
via JSON $ref scheme allowlist, and SPARQL injection prevention via requireSafeIri
* [CAT-FR-CO-05] remove requirement ids
continued in the follow-up cleanup branch.
* introduce trust framework bundles * correct current state about incomplete schema loading * remove the framework-bundled ontology and shapes from defaultschemas * remove deleted methods
…ouple-result-types-from-roles # Conflicts: # federated-catalogue/src/docs/architecture/chapters/05_building_block_view.adoc # federated-catalogue/src/docs/architecture/chapters/08_concepts.adoc # federated-catalogue/src/docs/architecture/chapters/09_architecture_decisions.adoc # federated-catalogue/src/docs/architecture/chapters/12_glossary.adoc
* docs: asset metadata enrichment Document the metadata enrichment path: routing on POST /assets when the uploaded RDF's primary subject IRI matches an existing non-RDF asset, the resulting graph and content updates, and the new content_kind column. Adds ADR 10 covering the subject-IRI routing decision and overwrite semantics, plus glossary entries for ContentKind and Metadata Enrichment. * feat(CAT-FR-AM-03): resolving comments * feat(CAT-FR-AM-03): resolving comments --------- Co-authored-by: saackef <fabian.saacke@msg.group>
* introduce trust framework bundles * correct current state about incomplete schema loading * remove the framework-bundled ontology and shapes from defaultschemas * add role to result mapping from bundle metadata * describe the no-adapter decision in ADR-10 * explain role declaration and the additional_roots mechanic for DSO mapping to ServiceOffering * explain role declaration and the additional_roots mechanic for DSO mapping to ServiceOffering * replace method name * update documentation with partial refactoring changes continued in the follow-up cleanup branch. --------- Signed-off-by: Eric Nowak <eric.nowak@msg.group>
…e cascade listener (#28) Aligns arc42 building block and runtime views with the cleanup PR: SHACL evaluation now runs directly inside ShaclValidationStrategy and SchemaValidationServiceImpl (no shared executor), and ProvenanceCleanupListener joins ValidationResultCleanupListener as a second AssetDeletedEvent consumer.
…anup-credential-verification-strategy Cleanup credential verification strategy
|
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
3 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
🚀 Summary
Adds architecture documentation for the external trust framework compliance check subsystem (CAT-FR-CO-03).
This change is part of the Enhancement of XFSC Federated Catalogue.
Details can be found here (permalink):
https://github.com/eclipse-xfsc/docs/blob/f3c6e6b6fbcc87732a1dfe83f060fa58a9a97873/federated-catalogue/src/docs/CAT%20Enhancement/CAT_Enhancement_Specifications%20v1.0.pdf
✅ What's Changed
05_building_block_view.adocclient_type,service_url, andapi_versionentries consumed by the compliance subsystem06_runtime_view.adoccoveringPOST /assets/{id}/compliance-checkandGET /assets/{id}/compliance-checks🔍 Related Issues
eclipse-xfsc/federated-catalogue#125
📋 Checklist