Context Navigation

attr.py @ 669b481

mei_rt2mei_rt2_fix_1

Last change on this file since 669b481 was 669b481, checked in by Mei <mei@…>, 12 years ago

1) finish test conversion from creddy-prover to python
2) update the abac.hh/API doc more, adding more intermediate calls

to make abac.hh more uniform

3) found out why a very long attribute rule can not survive in/out of

ietf_attribute_t call (m64 en/decoding - abac_verifier, alice_rt1)

Property mode set to 100755

File size: 2.7 KB

Line
1	#!/usr/bin/env python
2
3	"""
4	Setup access policy attribute rules
5
6	cmd1:env keystore=`pwd` ./attr.py
7
8	"""
9
10	import os
11	import ABAC
12
13	keystore=os.environ["keystore"]
14
15	ctxt = ABAC.Context()
16	print "ABAC version %s" % ctxt.version()
17
18	ctxt.load_directory(keystore)
19
20	out = ctxt.context_principals()
21	print "...initial principal set..."
22	for x in out[1]:
23	print "%s " % x.string()
24	print "\n"
25
26	out = ctxt.context_credentials()
27	print "...initial policy attribute set..."
28	for c in out[1]:
29	print "%s <- %s" % (c.head_string(), c.tail_string())
30	print "\n"
31
32	acmeID=ABAC.ID("Acme_ID.pem")
33	acmeID.id_load_privkey_file("Acme_private.pem");
34	acme=acmeID.id_keyid()
35
36	coyoteID=ABAC.ID("Coyote_ID.pem")
37	coyoteID.id_load_privkey_file("Coyote_private.pem");
38	coyote=coyoteID.id_keyid()
39
40	roadrunnerID=ABAC.ID("Roadrunner_ID.pem")
41	roadrunnerID.id_load_privkey_file("Roadrunner_private.pem");
42	roadrunner=roadrunnerID.id_keyid()
43
44	jackrabbitID=ABAC.ID("Jackrabbit_ID.pem")
45	jackrabbitID.id_load_privkey_file("Jackrabbit_private.pem");
46	jackrabbit=jackrabbitID.id_keyid()
47
48	################################################
49	# [keyid:Acme].role:preferred_customer <- [keyid:Acme].role:friendof([keyid:Roadrunner])
50	head = ABAC.Role(acme,"preferred_customer")
51	param=ABAC.DataTerm(roadrunnerID)
52	tail = ABAC.Role(acme,"friendof")
53	tail.role_add_data_term(param)
54	attr=ABAC.Attribute(head, 1800)
55	attr.attribute_add_tail(tail)
56	attr.attribute_bake()
57	attr.attribute_write_cert("Acme_preferred_customer__Acme_friendof_Roadrunner_attr.der")
58	#ctxt.load_attribute_file("Acme_preferred_customer__Acme_friendof_Roadrunner_attr.der")
59	ctxt.load_attribute(attr)
60	print attr.string()
61	print attr.typed_string()
62	print "\n"
63
64	#################################################
65	# [keyid:Acme].role:prefered_customer <- [keyid:Coyote]
66	head = ABAC.Role(acme,"preferred_customer")
67	tail = ABAC.Role(coyote)
68	attr=ABAC.Attribute(head, 1800)
69	attr.attribute_add_tail(tail)
70	attr.attribute_bake()
71	attr.attribute_write_cert("Acme_preferred_customer__Coyote_attr.der")
72	#ctxt.load_attribute_file("Acme_preferred_customer__Coyote_attr.der")
73	ctxt.load_attribute(attr)
74	print attr.string()
75	print attr.typed_string()
76	print "\n"
77
78	#################################################
79	# [keyid:Acme].role:friendof([keyid:Roadrunner]) <- [keyid:Jackrabbit]
80	param=ABAC.DataTerm(roadrunnerID)
81	head = ABAC.Role(acme,"friendof")
82	head.role_add_data_term(param)
83	tail = ABAC.Role(jackrabbit)
84	attr=ABAC.Attribute(head, 1800)
85	attr.attribute_add_tail(tail)
86	attr.attribute_bake()
87	attr.attribute_write_cert("Acme_friendof_Roadrunner__Jackrabbit_attr.der")
88	#ctxt.load_attribute_file("Acme_friendof_Roadrunner__Jackrabbit_attr.der")
89	ctxt.load_attribute(attr)
90	print attr.string()
91	print attr.typed_string()
92	print "\n"
93
94	ctxt.dump_yap_db()
95	##

Note: See TracBrowser for help on using the repository browser.

Context Navigation

source: examples/python_tests/acme_friend_rt1/attr.py @ 669b481

Download in other formats: