Means to specify database license #414
Conversation
merkys
requested review from
rartino,
ml-evs,
giovannipizzi,
gmrigna,
JPBergsma and
sauliusg
There was a problem hiding this comment.
The stanza says "all data", but shouldn't we include also "all metadata"?
I was slightly inclined to have a possibility to specify license per record, but I agree that this wold be unnecessary complication for now. We can always upgrade if there is a genuine need.
I would approve the PR if/when the question about metadata is resolved.
|
|
This is an important change (please note |
merkys
added
topic/property-standardization
|
I have updated the PR to reflect workshop discussions: |
|
For the case of the MPDS, we might have multiple licenses for the different sections of our data: CC BY 4.0, commercial/proprietary, per-vendor custom license, etc. We currently use per-entry custom field |
This is a scenario quite closely fitting my reasoning which I have presented in #102 in my discussions with @rartino. If MPDS uses per-entry custom field, why not promote it to the standard? But this probably could be introduced in a follow-up PR in order not to block the current one. According to this PR, MPDS licensing situation could be solved in two ways:
@blokhin Is any of these solutions suitable for MPDS? If so, maybe per-entry licensing could wait for the follow-up PR? |
|
@blokhin Even with your licensing situation, I hope that you do not have anything against merging this PR that allows linking a database-wide license text, where you can clarify the maybe not so simple licensing situation in MPDS? At the same time, perhaps we can continue the discussion of separate licenses for individual entries in #102? I'll copy your comment there to continue that discussion. |
optimade.rst
Outdated
| - **license**: A `JSON API links object <http://jsonapi.org/format/1.0/#document-links>`__ giving a pointer to a license covering all the data and metadata provided under this database. | ||
| If the license is included in the `SPDX License List <https://spdx.org/licenses/>`__, then the URL MUST point to SPDX-hosted license fulltext, i.e., it MUST start with :field-val:`https://spdx.org/licenses/`, but MUST NOT include the terminating :field-val:`.html`. |
There was a problem hiding this comment.
There may be more databases besides MPDS that use a per entry licencing system. So I think it would be good to specify that in that case, the link should point to a document describing how to find the licence for each entry. Otherwise someone may fill in a null value here, because there is no server wide licence.
There was a problem hiding this comment.
I would suggest resolving this by explicitly stating that there is no default value/interpretation of null for these licensing properties. In case no pointers are provided in license (or *_licenses), this means no rights are granted for the client (as is with the source code). I do not want to entangle too much logic around this PR - there is a field for provider to put a link to their license/policies, and it is up to a provider to describe their license/policies in it.
There was a problem hiding this comment.
Also, with the latest edits, the text for license says that the text it points to may express "(or licensing options if there are multiple)", which I think is the appropriate level of clarification about this.
There was a problem hiding this comment.
But maybe we need to explicitly state what missing/null value for license means too?
There was a problem hiding this comment.
Sure, it does not hurt to clarify for both the fields that null/missing means "no license". But, I suppose, in particular available_licenses present, and license missing should still be interpretable.
|
@merkys This seems a bit stalled? To move things forward, if you disagree with my suggestions, but don't have time to debate this, perhaps we can simplify the PR back to just a single "free-form" link without any machine-readable version and add the machine readable version in a separate PR? |
Co-authored-by: Rickard Armiento <gitcommits@armiento.net>
Yes, I wanted to give some more time for opinions like @blokhin's. But sure, if we can agree on a common subset of this PR, I am fine with stepping back. I would like to have licensing sorted out before the next release, one way or another. |
|
I'm okay with the database-wide |
|
My opinion on the per-entry field is that it is best kept as a database-specific field, because it should always have a database-specific meaning defined in the global license. As soon as we standardize a |
There was a problem hiding this comment.
The adjustments I think are needed to address my other point -- i.e., that the link really should be a free link with no requirement to be computer parsed, since available_licenses takes that role.
(I'm happy to hear contradicting opinions on this, though - I really don't mean to "steamroll" this PR, just make sure it is will work in a way that can be handled semi-automatically by my client implementation...)
Co-authored-by: Rickard Armiento <gitcommits@armiento.net>
Co-authored-by: Rickard Armiento <gitcommits@armiento.net>
There was a problem hiding this comment.
I think it would be great if @sauliusg has a chance to take a look at the present version before we merge it, since I think he has a good handle on the formalities around licensing. I also recall @giovannipizzi having some thoughts/input on this on the workshop.
|
This has sitting approved for a week waiting for further input. In the interest of cleaning up our PRs, I'm going to merge it. |
| Inclusion of a license identifier in the list is a commitment of the database that the rights are in place to grant clients access to all the data and metadata according to the terms of either of these licenses (at the choice of the client). | ||
| If the licensing information provided via the field :field:`license` omits licensing options specified in :field:`available_licenses`, or if it otherwise contradicts them, a client MUST still be allowed to interpret the inclusion of a license in :field:`available_licenses` as a full commitment from the database that the data and metadata is available, without exceptions, under the respective licenses. | ||
| If the database cannot make that commitment, e.g., if only part of the data is available under a license, the corresponding license identifier MUST NOT appear in :field:`available_licenses` (but, rather, the field :field:`license` is to be used to clarify the licensing situation.) | ||
| An empty list indicates that none of the SPDX licenses apply for the entirety of the database and that the licensing situation is clarified in human readable form in the field :field:`license`. |
There was a problem hiding this comment.
Without opening a new issue, I just wanted to clarify something here @merkys (and others). The field license is simply a Links object, so when you say "situtation is clarified in human readable form in the field license", are you referring to the content served at the URL pointed to in license->href, or the meta section of the Links object?
There was a problem hiding this comment.
If I remember the discussion correctly, we were indeed referring to the content of the URL to which the licence link points.
There was a problem hiding this comment.
It is license->href indeed, worth clarifying.
Fixes #102. After discussions with @rartino in #102 I became convinced that for now a single license for all the data in a database should be sufficient. Should there be parts of database belonging under a different license, they should either be described in database-wide license document, or moved to a separate "sibling" database under a different license.