# experiment_create_rt0_typed 

pwd=`pwd`

eloc=${ABAC_PROVER_PATH}
keyloc=$pwd

acme=`creddy --keyid --cert $keyloc/Acme_ID.pem`
alice=`creddy --keyid --cert $keyloc/Alice_ID.pem`
bob=`creddy --keyid --cert $keyloc/Bob_ID.pem`
globotron=`creddy --keyid --cert $keyloc/Globotron_ID.pem`

glob_admin="[keyid:$globotron].role:admin"
alice_prin="[keyid:$alice]"
bob_prin="[keyid:$bob]"
experiment_create="[keyid:$acme].role:experiment_create"

## dump all credentials
$eloc/abac_prover_yap  --keystore $keyloc --dump creds_dump

#[keyid:Globotron].role:admin <-?- [keyid:Alice]
#isMember(pAlice, role(pGlobotron,admin), C).
echo " "
echo "===good=============== Globotron.admin <- Alice"
$eloc/abac_prover_yap  --keystore $keyloc \
             --role "$glob_admin" --principal "$alice_prin"

#[keyid:Globotron].role:admin <-?- [keyid:Bob]
#isMember(pBob, role(pGlobotron,admin), C).
echo " "
echo "===bad=============== Globotron.admin <- Bob"
$eloc/abac_prover_yap  --keystore $keyloc \
             --role "$glob_admin" --principal "$bob_prin"

#[keyid:Acme].role:experiment_create <-?- [keyid:Bob]
#isMember(pBob, role(pAcme,experiment_create), C).
echo " "
echo "===good=============== Acme.experiment_create <- Bob"
$eloc/abac_prover_yap  --keystore $keyloc \
             --role "$experiment_create" --principal "$bob_prin"