rm -rf creds_dump pwd=`pwd` #eloc=/home/mei/Deter/abac/libabac eloc=$pwd/../../libabac #keyloc=/home/mei/Deter/abac/examples/alumni_rt1_typed keyloc=$pwd stateU=`creddy --keyid --cert $keyloc/StateU_ID.pem` bob=`creddy --keyid --cert $keyloc/Bob_ID.pem` maryann=`creddy --keyid --cert $keyloc/Maryann_ID.pem` joe=`creddy --keyid --cert $keyloc/Joe_ID.pem` stateU_foundingAlumni="[keyid:$stateU].role:foundingAlumni" bob_prin="[keyid:$bob]" maryann_prin="[keyid:$maryann]" joe_prin="[keyid:$joe]" # [keyid:stateU].role:foundingAlumni <-?- [keyid:Bob] (no) # [keyid:stateU].role:foundingAlumni <-?- [keyid:Maryann] (yes) ## dump all credentials $eloc/abac_prover_yap --keystore $keyloc --dump creds_dump # [keyid:stateU].role:foundingAlumni <-?- [keyid:Bob] (no) echo " " echo "===bad============ stateU.foundingAlumni <- Bob yap " $eloc/abac_prover_yap --keystore $keyloc --role "$stateU_foundingAlumni" --principal "$bob_prin" # [keyid:stateU].role:foundingAlumni <-?- [keyid:Maryann] (yes) # asking, isMember(pMaryann,role(pStateU,foundingAlumni),C). echo " " echo "===good============ stateU.foundingAlumni <- Maryann yap " $eloc/abac_prover_yap --keystore $keyloc --role "$stateU_foundingAlumni" --principal "$maryann_prin" # [keyid:stateU].role:foundingAlumni <-?- [keyid:Maryann] (yes) # asking, isMember(pMaryann,role(pStateU,foundingAlumni),C). echo " " echo "===good============ stateU.foundingAlumni <- Joe yap " echo $eloc/abac_prover_yap --keystore $keyloc --role "$stateU_foundingAlumni" --principal "$joe_prin" $eloc/abac_prover_yap --keystore $keyloc --role "$stateU_foundingAlumni" --principal "$joe_prin"