source: examples/python_tests/access_ctxt_rt2/ctxt.save @ 7f04233

mei_rt2
Last change on this file since 7f04233 was 2e9455f, checked in by Mei <mei@…>, 11 years ago

1) added namespace
2) tweak ?This,
3) allowing linking role/oset as constraining conditions
4) adding access_tests regression testing that uses GENI's access policy
5) added couple multi contexts regression tests
6) add compression/uncompression calls to abac_encode_string/abac_decode_string
(libstrongwan only allows 512 char for attribute rule storage)
7) add attribute_now option to creddy that takes a whole char string for attribute
rule
  • Property mode set to 100644
File size: 2.3 KB
Line 
1YAP 6.3.4 (i686-linux): Thu Mar  7 13:05:19 PST 2013
2
3...ctxtA principals
4(pAlpha,keyid,y)
5(pBob,keyid,n)
6(pJoe,keyid,n)
7
8...ctxtA attributes
9pAlpha.access('Read',F:pAlpha.documents(P)) <- pAlpha.team(P)
10pAlpha.documents('proj2') <- 'file//fileB'
11pAlpha.documents('proj2') <- 'file//fileC'
12pAlpha.documents('proj1') <- 'file//fileC'
13pAlpha.team('proj1') <- pBob
14pAlpha.team('proj2') <- pJoe
15pAlpha.documents('proj1') <- 'file//fileA'
16
17...ctxtB principals
18(pAlpha,keyid,y)
19(pBob,keyid,n)
20(pJoe,keyid,n)
21
22...ctxtB attributes
23pAlpha.access('Read',F:pAlpha.documents(P)) <- pAlpha.team(P)
24pAlpha.documents('proj2') <- 'file//fileB'
25pAlpha.documents('proj2') <- 'file//fileC'
26pAlpha.documents('proj1') <- 'file//fileC'
27pAlpha.team('proj1') <- pBob
28pAlpha.team('proj2') <- pJoe
29
30...ctxtC principals
31(pAlpha,keyid,y)
32(pBob,keyid,n)
33(pJoe,keyid,n)
34
35...ctxtC attributes
36pAlpha.access('Read',F:pAlpha.documents(P)) <- pAlpha.team(P)
37pAlpha.documents('proj1') <- 'file//fileA'
38pAlpha.documents('proj2') <- 'file//fileB'
39pAlpha.documents('proj1') <- 'file//fileC'
40pAlpha.team('proj1') <- pBob
41pAlpha.team('proj2') <- pJoe
42
43
44===good============ ctxtA,Alpha.access(Read,fileA)<-?-Bob
45YAP query succeed
46pAlpha.access('Read',F:pAlpha.documents(P)) <- pAlpha.team(P)
47pAlpha.documents('proj1') <- 'file//fileA'
48pAlpha.team('proj1') <- pBob
49
50
51===bad============ ctxtB,Alpha.access(Read,fileA)<-?-Bob
52YAP query failed
53
54
55===good============ ctxtC,Alpha.access(Read,fileA)<-?-Bob
56YAP query succeed
57pAlpha.access('Read',F:pAlpha.documents(P)) <- pAlpha.team(P)
58pAlpha.documents('proj1') <- 'file//fileA'
59pAlpha.team('proj1') <- pBob
60
61
62===bad============ ctxtA,Alpha.access(Read,fileA)<-?-Joe
63YAP query failed
64
65
66===bad============ ctxtB,Alpha.access(Read,fileA)<-?-Joe
67YAP query failed
68
69
70===bad============ ctxtC,Alpha.access(Read,fileA)<-?-Joe
71YAP query failed
72
73
74===good============ ctxtA,Alpha.access(Read,fileC)<-?-Joe
75YAP query succeed
76pAlpha.access('Read',F:pAlpha.documents(P)) <- pAlpha.team(P)
77pAlpha.documents('proj2') <- 'file//fileC'
78pAlpha.team('proj2') <- pJoe
79
80
81===good============ ctxtB,Alpha.access(Read,fileC)<-?-Joe
82YAP query succeed
83pAlpha.access('Read',F:pAlpha.documents(P)) <- pAlpha.team(P)
84pAlpha.documents('proj2') <- 'file//fileC'
85pAlpha.team('proj2') <- pJoe
86
87
88===bad============ ctxtC,Alpha.access(Read,fileC)<-?-Joe
89YAP query failed
Note: See TracBrowser for help on using the repository browser.