@prefix cert: . @prefix foaf: . @prefix rdf: . @prefix s: . @prefix uac: . _:auth a uac:Authorization; uac:agent ; uac:hasRole _:roleReadWebid, _:roleWriteWebid, _:roleReadProfile, _:roleReadBlog, _:roleWriteBlogPost, _:roleWriteBlogComment . _:authAnonymous a uac:Authorization; uac:agent ; uac:hasRole _:roleReadWebid, _:roleReadProfile . _:roleReadProfile a uac:Role; uac:access [ a uac:TripleAuthorization; uac:mode uac:Read; uac:filter [ a uac:SimpleFilter; uac:subject ; uac:predicate foaf:name; uac:predicate foaf:nick; ], [ a uac:SimpleFilter; uac:subject ; uac:predicate foaf:img; ] ]. _:roleReadWebid a uac:Role; uac:access [ a uac:TripleAuthorization; uac:mode uac:Read; uac:filter [ a uac:SimpleFilter; uac:predicate cert:key; ]; uac:children [ uac:access [ a uac:TripleAuthorization; uac:mode uac:Read; uac:filter [ a uac:SimpleFilter; uac:predicate rdf:type; ], [ a uac:SimpleFilter; uac:predicate cert:modulus; uac:predicate cert:exponent; ] ]; ]; ]. _:roleWriteWebid a uac:Role; uac:access [ a uac:TripleAuthorization; uac:mode uac:Write; uac:filter [ a uac:SimpleFilter; uac:predicate cert:key; ]; uac:children [ uac:access [ a uac:TripleAuthorization; uac:mode uac:Write; uac:filter [ a uac:SimpleFilter; uac:predicate rdf:type; ], [ a uac:SimpleFilter; uac:predicate cert:modulus; uac:predicate cert:exponent; ] ]; ]; ]. _:roleReadBlog a uac:Role; uac:access [ a uac:TripleAuthorization; uac:mode uac:Read; uac:filter [ a uac:SimpleFilter; uac:predicate rdf:type; uac:object s:Blog; ], [ a uac:SimpleFilter; uac:predicate s:name; uac:predicate s:description; ]; ], [ a uac:TripleAuthorization; uac:mode uac:Read; uac:filter [ a uac:SimpleFilter; uac:predicate s:blogPost; ]; uac:children [ uac:access [ a uac:TripleAuthorization; uac:mode uac:Read; uac:filter [ a uac:SimpleFilter; uac:predicate rdf:type; uac:object s:BlogPosting; ], [ a uac:SimpleFilter; uac:predicate s:datePublished; uac:predicate s:author; uac:predicate s:headline; uac:predicate s:articleBody; ]; ], [ a uac:TripleAuthorization; uac:mode uac:Read; uac:filter [ a uac:SimpleFilter; uac:predicate s:comment; ]; uac:children [ uac:access [ a uac:TripleAuthorization; uac:mode uac:Read; uac:filter [ a uac:SimpleFilter; uac:predicate rdf:type; uac:object s:UserComments; ], [ a uac:SimpleFilter; uac:predicate s:creator; uac:predicate s:commentTime; uac:predicate s:commentText; ]; ]; ]; ]; ]; ]. _:roleWriteBlogPost a uac:Role; uac:access [ a uac:TripleAuthorization; uac:required "true"; uac:filter [ a uac:SimpleFilter; uac:predicate rdf:type; uac:object s:Blog; ]; ], [ a uac:TripleAuthorization; uac:mode uac:Write; uac:filter [ a uac:SimpleFilter; uac:predicate s:blogPost; ]; uac:children [ uac:access [ a uac:TripleAuthorization; uac:mode uac:Write; uac:filter [ a uac:SimpleFilter; uac:predicate rdf:type; uac:object s:BlogPosting; ], [ a uac:SimpleFilter; uac:predicate s:datePublished; uac:predicate s:author; uac:predicate s:headline; uac:predicate s:articleBody; ]; ] ] ]. _:roleWriteBlogComment a uac:Role; uac:access [ a uac:TripleAuthorization; uac:filter [ a uac:SimpleFilter; uac:predicate s:blogPost; ]; uac:children [ uac:access [ a uac:TripleAuthorization; uac:mode uac:Write; uac:filter [ a uac:SimpleFilter; uac:predicate s:comment; ]; uac:children [ uac:access [ a uac:TripleAuthorization; uac:mode uac:Write; uac:filter [ a uac:SimpleFilter; uac:predicate rdf:type; uac:object s:UserComments; ], [ a uac:SimpleFilter; uac:predicate s:commentTime; uac:predicate s:commentText; ]; ], [ a uac:TripleAuthorization; uac:mode uac:Write; uac:filter [ a uac:SimpleFilter; uac:predicate s:creator; ]; # uac:filter [ a uac:VariableFilter; # uac:predicate [ # uac:value s:creator; # ]; # uac:object [ # uac:variable "agent"; # ]; # ]; # uac:required "true"; ]; ]; ]; ]; ].