| 1 | #!/usr/bin/perl |
|---|
| 2 | |
|---|
| 3 | use strict; |
|---|
| 4 | use Getopt::Long; |
|---|
| 5 | use Data::Dumper; |
|---|
| 6 | use RPC::XML qw(smart_encode); |
|---|
| 7 | use RPC::XML::ParserFactory; |
|---|
| 8 | use LWP::UserAgent; |
|---|
| 9 | use HTTP::Request; |
|---|
| 10 | # use IO::Socket::SSL; |
|---|
| 11 | |
|---|
| 12 | use ABAC; |
|---|
| 13 | |
|---|
| 14 | use constant { |
|---|
| 15 | USER_AGENT => 'abac/0.1.0', |
|---|
| 16 | }; |
|---|
| 17 | |
|---|
| 18 | my ($keystore, $cert, $key, $role); |
|---|
| 19 | my $url = 'localhost:8000'; |
|---|
| 20 | GetOptions( |
|---|
| 21 | 'keystore=s' => \$keystore, |
|---|
| 22 | 'url=s' => \$url, |
|---|
| 23 | 'cert=s' => \$cert, |
|---|
| 24 | 'key=s' => \$key, |
|---|
| 25 | 'role=s' => \$role, |
|---|
| 26 | ) || usage(); |
|---|
| 27 | |
|---|
| 28 | usage() unless defined $keystore && defined $cert && defined $key && defined $role; |
|---|
| 29 | |
|---|
| 30 | # code starts here |
|---|
| 31 | ABAC::libabac_init; |
|---|
| 32 | |
|---|
| 33 | # load the certificates |
|---|
| 34 | my $context = ABAC::Context->new; |
|---|
| 35 | $context->load_directory($keystore); |
|---|
| 36 | |
|---|
| 37 | # build the XML RPC request |
|---|
| 38 | my $request = RPC::XML::request->new( |
|---|
| 39 | 'abac.query', |
|---|
| 40 | smart_encode({ |
|---|
| 41 | role => $role, |
|---|
| 42 | credentials => [ |
|---|
| 43 | map {{ |
|---|
| 44 | attribute_cert => RPC::XML::base64->new($_->attribute_cert), |
|---|
| 45 | issuer_cert => RPC::XML::base64->new($_->issuer_cert), |
|---|
| 46 | }} @{$context->credentials} |
|---|
| 47 | ], |
|---|
| 48 | }), |
|---|
| 49 | ); |
|---|
| 50 | |
|---|
| 51 | # encode and send the HTTP POST |
|---|
| 52 | my $request_body = $request->as_string; |
|---|
| 53 | |
|---|
| 54 | $ENV{HTTPS_CERT_FILE} = $cert; |
|---|
| 55 | $ENV{HTTPS_KEY_FILE} = $key; |
|---|
| 56 | $ENV{HTTPS_DEBUG} = 1; |
|---|
| 57 | |
|---|
| 58 | my $ua = LWP::UserAgent->new; |
|---|
| 59 | |
|---|
| 60 | my $request = HTTP::Request->new( |
|---|
| 61 | 'POST', |
|---|
| 62 | "https://$url/RPC2", |
|---|
| 63 | ); |
|---|
| 64 | $request->header('User-Agent', USER_AGENT); |
|---|
| 65 | $request->header('Content-Length', length $request_body); |
|---|
| 66 | $request->content($request_body); |
|---|
| 67 | |
|---|
| 68 | my $response = $ua->request($request); |
|---|
| 69 | if (!$response->is_success) { |
|---|
| 70 | die $response->status_line; |
|---|
| 71 | } |
|---|
| 72 | |
|---|
| 73 | # decode the reply |
|---|
| 74 | my $xmlrpc_response = RPC::XML::ParserFactory->new->parse($response->decoded_content); |
|---|
| 75 | print Dumper $xmlrpc_response; |
|---|
| 76 | |
|---|
| 77 | sub usage { |
|---|
| 78 | print "Usage: $0 \\\n"; |
|---|
| 79 | print " --keystore <keystore> [ --url <host:port> ] \\\n"; |
|---|
| 80 | print " --cert <cert.pem> --key <key.pem> \\\n"; |
|---|
| 81 | print " --role <keyid.role>\n"; |
|---|
| 82 | print " url defaults to localhost:8000\n"; |
|---|
| 83 | exit 1; |
|---|
| 84 | } |
|---|
