source: examples/creddy_prover_tests/acme_rockets_intersection_rt0/README @ b7b2ca1

abac0-leakabac0-meimei-idmei-rt0-nmei_rt0tvf-new-xml
Last change on this file since b7b2ca1 was 461541a, checked in by Mei <mei@…>, 12 years ago

1) updated original rt0 to remove libstrongswan dependency

a) identity credential being made/accessed with openssl api calls

(X509/EVP_PKEY pem)

b) attribute credential being made/access via xmlsec1 (custom XML

structure)

2) refactored libcreddy into libabac and now one ABAC namespace for

libabac

3) added attribute_rule suboption to creddy's attribute as another way

to insert access rule

4) added some regression tests into example directory
5) updated some docs.

  • Property mode set to 100755
File size: 1.6 KB
RevLine 
[461541a]1#!/bin/sh
2
3#This example demonstrates intersections.
4#
5#In order to buy rockets from Acme, you must be BOTH a preferred customer
6#AND a WarnerBros character. In this example, the following query will be
7#successful:
8#
9#    Acme.buy_rockets <-?- Coyote
10#
11#The following query will fail (because Batman does not have the
12#attribute WarnerBros.character):
13#
14#    Acme.buy_rockets <-?- Batman
15#
16#Acme.buy_rockets <- Acme.preferred_customer & WarnerBros.character
17#Acme.preferred_customer <- Coyote
18#Acme.preferred_customer <- Batman
19#WarnerBros.character <- Coyote
20#
21
22rm -rf *.xml *.pem
[6180394]23
24creddy --generate --cn Acme
25
26creddy --generate --cn WarnerBros
27
28creddy --generate --cn Coyote
29
30creddy --generate --cn Batman
31
32creddy --attribute \
33       --issuer Acme_ID.pem --key Acme_private.pem --role buy_rockets \
34       --subject-cert Acme_ID.pem --subject-role preferred_customer \
35       --subject-cert WarnerBros_ID.pem --subject-role character \
[461541a]36       --out Acme_buy_rockets__Acme_preferred_customer_and_WarnerBros_character_attr.xml
[6180394]37
38creddy --attribute \
39       --issuer Acme_ID.pem --key Acme_private.pem --role preferred_customer \
40       --subject-cert Coyote_ID.pem \
[461541a]41       --out Acme_preferred_customer__Coyote_attr.xml
[6180394]42
43creddy --attribute \
44       --issuer Acme_ID.pem --key Acme_private.pem --role preferred_customer \
45       --subject-cert Batman_ID.pem \
[461541a]46       --out Acme_preferred_customer__Batman_attr.xml
[6180394]47
48creddy --attribute \
49       --issuer WarnerBros_ID.pem --key WarnerBros_private.pem --role character \
50       --subject-cert Coyote_ID.pem \
[461541a]51       --out WarnerBros_character__Coyote_attr.xml
52
Note: See TracBrowser for help on using the repository browser.