abac0-leakabac0-meimei-idmei-rt0-nmei_rt0tvf-new-xml
|
Last change
on this file since 7e07118 was
461541a,
checked in by Mei <mei@…>, 11 years ago
|
|
1) updated original rt0 to remove libstrongswan dependency
a) identity credential being made/accessed with openssl api calls
(X509/EVP_PKEY pem)
b) attribute credential being made/access via xmlsec1 (custom XML
structure)
2) refactored libcreddy into libabac and now one ABAC namespace for
libabac
3) added attribute_rule suboption to creddy's attribute as another way
to insert access rule
4) added some regression tests into example directory
5) updated some docs.
|
-
Property mode set to
100644
|
|
File size:
625 bytes
|
| Line | |
|---|
| 1 | ---running attribute |
|---|
| 2 | Usage: creddy --attribute \ |
|---|
| 3 | --issuer <cert> --key <key> --role <role> \ |
|---|
| 4 | [ --subject-cert <cert> | --subject-id <sha1> \ |
|---|
| 5 | [ --subject-role <role> ] ... ] \ |
|---|
| 6 | [ --validity <time> ] --out <file> |
|---|
| 7 | default validity: 365 days |
|---|
| 8 | provide exactly one of --subject-cert / --subject-id |
|---|
| 9 | give multiple --subject-{cert,id} / --subject-role pairs for intersection |
|---|
| 10 | |
|---|
| 11 | time is specified with optional suffix: s m h d y |
|---|
| 12 | defaults to days if unspecified |
|---|
| 13 | wrong private key for the cert!! |
|---|
| 14 | creddy: Can't load private key from Coyote_private.pem |
|---|
Note: See
TracBrowser
for help on using the repository browser.
