abac0-leakabac0-mei
|
Last change
on this file since 6cd69a0 was
ec550f7,
checked in by Mei <mei@…>, 11 years ago
|
|
1) reworked how API doc is generated
2) tweak top level Makefile.am
3) loading issuer principal as side-effect of loading
an attribute credentials
4) add examples of GENI specific attribute credentials
and principal certificates into the regression testing
5) rename examples to tests
|
-
Property mode set to
100755
|
|
File size:
928 bytes
|
| Rev | Line | |
|---|
| [be6cb41] | 1 | # |
|---|
| 2 | # The example makes use of 2 principals, Acme and Coyote. |
|---|
| 3 | # |
|---|
| 4 | # This example shows a very simple delegation of roles by Acme. Acme's |
|---|
| 5 | # buy_rockets role includes all of Acme's preferred customers. The setup.py |
|---|
| 6 | # creates the principals and the attr.py creates 2 policy credentials. |
|---|
| 7 | # Credential 1 encodes the policy that all of Acme's preferred customers |
|---|
| 8 | # can buy rockets from Acme and |
|---|
| 9 | # Credential 2 defines the Coyote as an Acme preferred customer. |
|---|
| 10 | |
|---|
| 11 | # The ./run_query script issues queries to show that the Coyote is both a preferred |
|---|
| 12 | # customer and can buy rockets. Two invalid queries are also made, checking if |
|---|
| 13 | # Acme is the Coyote's friend, which it isn't and whether a query about |
|---|
| 14 | # something other than a principal works (it doesn't). |
|---|
| 15 | |
|---|
| 16 | # acme_rockets_rt0 |
|---|
| 17 | |
|---|
| 18 | # Credential 1 |
|---|
| 19 | #[keyid:Acme].role:buy_rockets <- [keyid:Acme].role:preferred_customer |
|---|
| 20 | |
|---|
| 21 | # Credential 2 |
|---|
| 22 | #[keyid:Acme].role:preferred_customer <- [keyid:Coyote] |
|---|
| 23 | |
|---|
Note: See
TracBrowser
for help on using the repository browser.
