source: examples/creddy_prover_tests/experiment_create_rt0/run_query @ 7e3f5e2

abac0-leakabac0-meimei-idmei-rt0-nmei_rt0tvf-new-xml
Last change on this file since 7e3f5e2 was 461541a, checked in by Mei <mei@…>, 12 years ago

1) updated original rt0 to remove libstrongswan dependency

a) identity credential being made/accessed with openssl api calls

(X509/EVP_PKEY pem)

b) attribute credential being made/access via xmlsec1 (custom XML

structure)

2) refactored libcreddy into libabac and now one ABAC namespace for

libabac

3) added attribute_rule suboption to creddy's attribute as another way

to insert access rule

4) added some regression tests into example directory
5) updated some docs.

  • Property mode set to 100755
File size: 999 bytes
Line 
1#!/bin/sh
2
3pwd=`pwd`
4eloc=`which abac_prover | sed 's/\/abac_prover//'`
5if [ "$eloc" = "" ]; then
6  echo "ERROR: abac_prover is not in the search path!!!"
7  exit 1
8fi
9keyloc=$pwd
10
11acme=`creddy --keyid --cert $keyloc/Acme_ID.pem`
12alice=`creddy --keyid --cert $keyloc/Alice_ID.pem`
13bob=`creddy --keyid --cert $keyloc/Bob_ID.pem`
14globotron=`creddy --keyid --cert $keyloc/Globotron_ID.pem`
15
16glob_admin="$globotron.admin"
17alice_prin="$alice"
18bob_prin="$bob"
19experiment_create="$acme.experiment_create"
20
21echo " "
22echo "===good=============== Globotron.admin <- Alice"
23$eloc/abac_prover  --keystore $keyloc \
24             --role "$glob_admin" --principal "$alice_prin"
25
26echo " "
27echo "===bad=============== Globotron.admin <- Bob"
28$eloc/abac_prover  --keystore $keyloc \
29             --role "$glob_admin" --principal "$bob_prin"
30
31echo " "
32echo "===good=============== Acme.experiment_create <- Bob"
33$eloc/abac_prover  --keystore $keyloc \
34             --role "$experiment_create" --principal "$bob_prin"
35
36
Note: See TracBrowser for help on using the repository browser.