source: examples/experiment_create_rt0_typed/rr @ 7727f26

mei_rt2mei_rt2_fix_1meiyap-rt1rt2
Last change on this file since 7727f26 was 7727f26, checked in by Mei <mei@…>, 12 years ago

1) add environment variables DUMP_DB, ABAC_CN.

ABAC_CN will switch to using CNs for keyid insead of SHAs

2) add/modified couple of doc files.
  • Property mode set to 100755
File size: 1.3 KB
Line 
1
2rm -rf creds_dump
3
4pwd=`pwd`
5
6eloc=$pwd/../../libabac
7keyloc=$pwd
8
9acme=`creddy --keyid --cert $keyloc/Acme_ID.pem`
10alice=`creddy --keyid --cert $keyloc/Alice_ID.pem`
11bob=`creddy --keyid --cert $keyloc/Bob_ID.pem`
12globotron=`creddy --keyid --cert $keyloc/Globotron_ID.pem`
13
14glob_admin="[keyid:$globotron].role:admin"
15alice_prin="[keyid:$alice]"
16bob_prin="[keyid:$bob]"
17experiment_create="[keyid:$acme].role:experiment_create"
18
19## dump all credentials
20$eloc/abac_prover_yap  --keystore $keyloc --dump creds_dump
21
22#[keyid:Globotron].role:admin <-?- [keyid:Alice] yap
23#isMember(pAlice, role(pGlobotron,admin), C).
24echo " "
25echo "===good=============== Globotron.admin <- Alice yap "
26$eloc/abac_prover_yap  --keystore $keyloc \
27             --role "$glob_admin" --principal "$alice_prin"
28
29#[keyid:Globotron].role:admin <-?- [keyid:Bob] yap
30#isMember(pBob, role(pGlobotron,admin), C).
31echo " "
32echo "===bad=============== Globotron.admin <- Bob yap "
33$eloc/abac_prover_yap  --keystore $keyloc \
34             --role "$glob_admin" --principal "$bob_prin"
35
36#[keyid:Acme].role:experiment_create <-?- [keyid:Bob] yap
37#isMember(pBob, role(pAcme,experiment_create), C).
38echo " "
39echo "===good=============== Acme.experiment_create <- Bob yap "
40$eloc/abac_prover_yap  --keystore $keyloc \
41             --role "$experiment_create" --principal "$bob_prin"
42
43
Note: See TracBrowser for help on using the repository browser.