source: examples/python_tests/leader_rt1/query.py @ a0c1772

mei_rt2mei_rt2_fix_1
Last change on this file since a0c1772 was f824a9e, checked in by Mei <mei@…>, 12 years ago

1) add more doc to python_tests

  • Property mode set to 100755
File size: 2.3 KB
Line 
1#!/usr/bin/env python
2
3"""
4Run the queries described in README
5
6cmd1:env keystore=`pwd` ./query.py
7cmd2: env ABAC_CN=1 keystore=`pwd` ./query.py
8
9"""
10
11import os
12import ABAC
13
14ctxt = ABAC.Context()
15
16# Keystore is the directory containing the principal credentials.
17# Load existing principals and/or policy credentials
18if (os.environ.has_key("keystore")) :
19    keystore=os.environ["keystore"]
20    ctxt.load_directory(keystore)
21else:
22    print("keystore is not set...")
23    exit(1)
24
25# retrieve principals' keyid value from local credential files
26geniID=ABAC.ID("Geni_ID.pem");
27geniID.id_load_privkey_file("Geni_private.pem");
28geni=geniID.id_keyid()
29
30bobID=ABAC.ID("Bob_ID.pem");
31bobID.id_load_privkey_file("Bob_private.pem");
32bob=bobID.id_keyid()
33
34jackID=ABAC.ID("Jack_ID.pem");
35jackID.id_load_privkey_file("Jack_private.pem");
36jack=jackID.id_keyid()
37
38joeID=ABAC.ID("Joe_ID.pem");
39joeID.id_load_privkey_file("Joe_private.pem");
40joe=joeID.id_keyid()
41
42##########################################################################
43# dump the loaded principals/policies
44#
45out = ctxt.context_principals()
46print "\n...final principal set..."
47for x in out[1]:
48    print "%s " % x.string()
49out = ctxt.context_credentials()
50print "\n...final policy attribute set..."
51for c in out[1]:
52    print "%s <- %s" % (c.head_string(), c.tail_string())
53
54##########################################################################
55# is Bob a leader at Geni ?
56# role=[keyid:geni].role:leader
57# p=[keyid:Bob]
58role = ABAC.Role(geni,"leader")
59p = ABAC.Role(bob)
60print "\n===good============ geni.leader <- Bob"
61out = ctxt.query(role, p)
62for c in out[1]:
63    print "%s <- %s" % (c.head_string(), c.tail_string())
64
65##########################################################################
66# is Jack a leader at Geni ?
67# role=[keyid:geni].role:leader
68# p=[keyid:Jack]
69role = ABAC.Role(geni,"leader")
70p = ABAC.Role(jack)
71print "\n===bad============ geni.leader <- Jack"
72out = ctxt.query(role, p)
73for c in out[1]:
74    print "%s <- %s" % (c.head_string(), c.tail_string())
75
76##########################################################################
77# is Joe a leader at Geni ?
78# role=[keyid:geni].role:leader
79# p=[keyid:Joe]
80role = ABAC.Role(geni,"leader")
81p = ABAC.Role(joe)
82print "\n===good============ geni.leader <- Joe"
83out = ctxt.query(role, p)
84for c in out[1]:
85    print "%s <- %s" % (c.head_string(), c.tail_string())
86
Note: See TracBrowser for help on using the repository browser.