abac0-leakabac0-meimei-idmei-rt0-nmei_rt0tvf-new-xml
|
Last change
on this file since 4721618 was
461541a,
checked in by Mei <mei@…>, 11 years ago
|
|
1) updated original rt0 to remove libstrongswan dependency
a) identity credential being made/accessed with openssl api calls
(X509/EVP_PKEY pem)
b) attribute credential being made/access via xmlsec1 (custom XML
structure)
2) refactored libcreddy into libabac and now one ABAC namespace for
libabac
3) added attribute_rule suboption to creddy's attribute as another way
to insert access rule
4) added some regression tests into example directory
5) updated some docs.
|
-
Property mode set to
100755
|
|
File size:
637 bytes
|
| Line | |
|---|
| 1 | #!/bin/sh |
|---|
| 2 | |
|---|
| 3 | #attribute_rule.sh |
|---|
| 4 | |
|---|
| 5 | pwd=`pwd` |
|---|
| 6 | eloc=`which creddy | sed 's/\/creddy//'` |
|---|
| 7 | if [ "$eloc" = "" ]; then |
|---|
| 8 | echo "ERROR: creddy is not in the search path!!!" |
|---|
| 9 | exit 1 |
|---|
| 10 | fi |
|---|
| 11 | |
|---|
| 12 | $eloc/creddy --generate --cn Bigbird 1>/dev/null 2>& 1 |
|---|
| 13 | $eloc/creddy --generate --cn Coyote 1>/dev/null 2>& 1 |
|---|
| 14 | |
|---|
| 15 | bigbird=`creddy --keyid --cert Bigbird_ID.pem` |
|---|
| 16 | coyote=`creddy --keyid --cert Coyote_ID.pem` |
|---|
| 17 | |
|---|
| 18 | rule="$coyote.sneaky_friend<-$bigbird" |
|---|
| 19 | |
|---|
| 20 | $eloc/creddy --attribute \ |
|---|
| 21 | --issuer Coyote_ID.pem --key Coyote_private.pem \ |
|---|
| 22 | --attrrule "$rule" \ |
|---|
| 23 | --out Coyote_sneakyFriend__Bigbird.xml |
|---|
| 24 | |
|---|
| 25 | $eloc/creddy --roles --cert Coyote_sneakyFriend__Bigbird.xml |
|---|
| 26 | |
|---|
Note: See
TracBrowser
for help on using the repository browser.
