A site can be owned, or not. If it is owned we ask two simple questions "Who Are You?" and "Are You The Site Owner?". The separation of these two questions is important, as we will see.
Federated Wiki is only concerned with "Who Are You?", authentication, when the site is owned and you are performing an action that only the site's owner is allowed to perform.
#Ownership
My instinct is to make a big deal about ownership. This needs thinking through. Security is traditionally separated from ownership, that is the author and the system administrator are different people.
In Federated Wiki, we make a big deal about:
To support these aims we consider the following important:#Related
There are circumstances when having a built-in authentication scheme is not practical. For these we should enable a wiki site to be wrapped in a layer that protects the site.
With wiki sites being owned by individuals there is only a single question that concerns us, "Are you the site owner?"
A WebID is an HTTP URI that denotes ("refers to" or "names)" an agent on HTTP based networks e.g., the Web or an enterprise Intranet.
WebID-RSA is somehow similar to WebID + TLS, in that a public RSA key is published in the WebID profile, and the user will sign a token with the corresponding private key that matches the public key in the profile - github 