/
Samvera Tech Call 2025-10-15

Samvera Tech Call 2025-10-15

Meeting Logistics:

Agenda (meeting notes below)

  • IIIF Auth Support (@Daniel Pierce )

  • <add your agenda item here (your name)>



Moderator: @Daniel Pierce

Notetaker: @Randall Floyd

Attendees:

  • @Tracy McCormick

  • @Chris Colvard

  • @Mark Bussey

  • @Heather Greer Klein

  • @Sarah Proctor

  • @Praneeth Byna

  • @Bradley Watson

  • you!



Meeting Process

  1. Standing pre-agenda items (moderator)

    1. Welcome

      • "Welcome everyone, please add your name to the Attendees list.  If you are unable to do so, please let us know, and someone will add you. To any newcomers, Welcome, and please feel free to ask questions. Likewise for all attendees. We strive for an open and accessible conversation around Samvera technology."

    2. Call for new agenda items

  2. Follow Agenda from above (facilitated by moderator) and record notes in Notes section below (note taker)

  3. Standing post-agenda items (moderator)

    1. call for next moderator and note taker (moderator)

      1. Moderator:

      2. Notetaker:

    2. Samvera help follow-up (moderator)

    3. Pull request review (moderator)

      1. Recent Samvera PR list

  4. Post-meeting action (note taker)

    1. After call, this week's notetaker should create the agenda for the next call:

      1. Open template agenda titled "Samvera Tech Call XXXX-XX-XX"

      2. Click on ... in the top right corner, and select “Duplicate”.

      3. Popup will open for location. It should contain:

        1. Space: Samvera

        2. Parent page: (Verify value is current year)

      4. Select “Duplicate”. New page should be created.

      5. Modify the title to remove "Duplicate of", update it with the next date, add moderator, notetaker, and any carry-over agenda info. Click Publish. 



Notes

  1. IIIF image server authentication

    1. External IIIF image server - can’t check authZ because the image server has no session context to see if the client has access to an object

    2. RIIIF can because it’s usually running inline to the same Rails app that already has the session context that initiated the image request

    3. IIIF AV gem has some kind of authZ?

      1. hyrax-iiif_av/app/controllers/hyrax/iiif_av/iiif_av_controller.rb at main · samvera-labs/hyrax-iiif_av

      2. But not sure if it’s using the auth protocol IIIF Authorization Flow API 2.0

      3. Chris:

        1. pre Auth 2.0

        2. Didn’t try to work with images specs in the auth API

        3. Avalon uses RAMP, only for AV content, integrated into Avalon so already a session established like RIIIF

        4. Timeliner tool for Avalon, goes through the Auth flow because it’s outside the session; not sure about it’s state or correctness

        5. Not sure how that correlates to Images/Image servers

    4. Anyone else done Hyrax related work using external image server?

      1. Apparently not?

    5. Chris and Daniel will be looking at this, investigating Auth 2.0, what work is required in viewers?

  2. My update about Hyrax (especially related to FM)

  3. Heather - schedule still shaping up for Connect, still room for a lightning talks

    1. Also a poll about planning for 2026 events

    2. Larita nominated for and won the Julie Allinson award!

  4. Chris

    1. BrowseEverything - Jonathon Rochind blocked by old versions of dependencies

    2. Path forward is to make the dependencies optional, must add the dependency yourself to get the adapters you want

    3. Avalon has changes in fork of BE that need to be contributed in coordination with that

    4. Call for anyone else with stake in BE to help pitch into that “modernization effort” for a BE 2.0

 

Next week the 22nd

Moderator: @Randall Floyd

Note taker: @Daniel Pierce