abac0-leakabac0-meimei-idmei-rt0-nmei_rt0tvf-new-xml
Last change
on this file since 4e10a0f was
461541a,
checked in by Mei <mei@…>, 12 years ago
|
1) updated original rt0 to remove libstrongswan dependency
a) identity credential being made/accessed with openssl api calls
(X509/EVP_PKEY pem)
b) attribute credential being made/access via xmlsec1 (custom XML
structure)
2) refactored libcreddy into libabac and now one ABAC namespace for
libabac
3) added attribute_rule suboption to creddy's attribute as another way
to insert access rule
4) added some regression tests into example directory
5) updated some docs.
|
-
Property mode set to
100644
|
File size:
625 bytes
|
Rev | Line | |
---|
[461541a] | 1 | ---running attribute |
---|
| 2 | Usage: creddy --attribute \ |
---|
| 3 | --issuer <cert> --key <key> --role <role> \ |
---|
| 4 | [ --subject-cert <cert> | --subject-id <sha1> \ |
---|
| 5 | [ --subject-role <role> ] ... ] \ |
---|
| 6 | [ --validity <time> ] --out <file> |
---|
| 7 | default validity: 365 days |
---|
| 8 | provide exactly one of --subject-cert / --subject-id |
---|
| 9 | give multiple --subject-{cert,id} / --subject-role pairs for intersection |
---|
| 10 | |
---|
| 11 | time is specified with optional suffix: s m h d y |
---|
| 12 | defaults to days if unspecified |
---|
| 13 | wrong private key for the cert!! |
---|
| 14 | creddy: Can't load private key from Coyote_private.pem |
---|
Note: See
TracBrowser
for help on using the repository browser.