source: examples/creddy_prover_tests/access_rt2/run_query @ 47d5cf9

mei_rt2mei_rt2_fix_1
Last change on this file since 47d5cf9 was 5110d42, checked in by Mei <mei@…>, 13 years ago

1) reorganized the test directory to include python tests
2) attribute via api and principal via api from python scripts is

working (although there is a annoying seg fault at the very end
that must be related to something not been dup()ed.. need to wait
for c example to debug it)

3) able to query via api
4) replicated access_rt2 example in python and the query result matches
5) expanded api to make it easier to generate rt2 structure
  • Property mode set to 100755
File size: 1.2 KB
RevLine 
[10e1588]1
[9502c50]2
3# access_rt2_typed
[10e1588]4
[c469edf]5pwd=`pwd`
6
[5110d42]7eloc=${ABAC_PROVER_PATH}
[c469edf]8keyloc=$pwd
[10e1588]9
10alpha=`creddy --keyid --cert $keyloc/Alpha_ID.pem`
11bob=`creddy --keyid --cert $keyloc/Bob_ID.pem`
12joe=`creddy --keyid --cert $keyloc/Joe_ID.pem`
13
14bob_prin="[keyid:$bob]"
15
[9806e76]16access_fileA="[keyid:$alpha].role:access([string:'Read'],[urn:'file//fileA'])"
[10e1588]17team_proj2="[keyid:$alpha].role:team([string:'proj2'])"
18bob_prin="[keyid:$bob]"
19joe_prin="[keyid:$joe]"
20
[7b548fa]21## dump all credentials
[e88c95b]22$eloc/abac_prover_yap  --keystore $keyloc --dump creds_dump
[10e1588]23
[8bd77b5]24# double check
25#creddy  --roles --cert Alpha_access_qFqP__alpha_team_qP_attr.der
26
[9806e76]27#[keyid:Alpha].role:access([string:'Read'],[urn:'file//fileA']) <-?- [keyid:bob] (yes)
[36b100a]28echo " "
[9502c50]29echo "===good============ Alpha.access(Read,fileA)<-?-Bob"
[10e1588]30$eloc/abac_prover_yap  --keystore $keyloc --role "$access_fileA" --principal "$bob_prin"
31
[36b100a]32echo " "
[9502c50]33echo "===bad============ Alpha.access(Read,fileA)<-?-Joe"
[10e1588]34$eloc/abac_prover_yap  --keystore $keyloc --role "$access_fileA" --principal "$joe_prin"
35
[36b100a]36echo " "
[9502c50]37echo "===good============ Alpha.team(proj2)<-?-Joe"
[5110d42]38#[keyid:alpha].role:team([string:'proj2'])<-[keyid:Joe]
[e88c95b]39$eloc/abac_prover_yap  --keystore $keyloc --role "$team_proj2" --principal "$joe_prin"
[10e1588]40
Note: See TracBrowser for help on using the repository browser.