rm -rf creds_dump

pwd=`pwd`

#eloc=/home/mei/Deter/abac/libabac
eloc=$pwd/../../libabac
#keyloc=/home/mei/Deter/abac/examples/acme_friend_rt1_typed
keyloc=$pwd

roadrunner=`creddy --keyid --cert $keyloc/Roadrunner_ID.pem`
acme=`creddy --keyid --cert $keyloc/Acme_ID.pem`
coyote=`creddy --keyid --cert $keyloc/Coyote_ID.pem`
jackrabbit=`creddy --keyid --cert $keyloc/Jackrabbit_ID.pem`

friendof_roadrunner="[keyid:$acme].role:friendOf([keyid:$roadrunner])"
coyote_prin="[keyid:$coyote]"
badcoyote_prin="[keyid:bad]"
preferred_customer="[keyid:$acme].role:preferred_customer"
jackrabbit_prin="[keyid:$jackrabbit]"

## dump all credentials
$eloc/abac_prover_yap  --keystore $keyloc --dump creds_dump

#[keyid:Acme].role:friendof([keyid:Roadrunner]) <-?- [keyid:Coyote] yap
echo "  "
echo "===bad============ Acme.friendOf(Roadrunner) <- Coyote yap "
$eloc/abac_prover_yap  --keystore $keyloc --role "$friendof_roadrunner" --principal "$coyote_prin"

#[keyid:Acme].role:friendof([keyid:Roadrunner]) <-?- [keyid:Jackrabbit] yap
echo "  "
echo "===good============ Acme.friendOf(Roadrunner) <- Jackrabbit yap "
$eloc/abac_prover_yap  --keystore $keyloc --role "$friendof_roadrunner" --principal "$jackrabbit_prin"

#[keyid:Acme].role:preferred_customer <-?- [keyid:Jackrabbit] yap
echo "  "
echo "===good============ Acme.preferred_customer <- Jackrabbit yap "
$eloc/abac_prover_yap  --keystore $keyloc --role "$preferred_customer" --principal "$jackrabbit_prin"

#[keyid:Acme].role:preferred_customer <-?- [keyid:Coyote] yap
echo "  "
echo "===good============ Acme.preferred_customer <- Coyote yap "
$eloc/abac_prover_yap  --keystore $keyloc --role "$preferred_customer" --principal "$coyote_prin"

#[keyid:Acme].role:preferred_customer <-?- [keyid:badCoyote] yap
echo "  "
echo "===bad============ Acme.preferred_customer <- badCoyote yap "
$eloc/abac_prover_yap  --keystore $keyloc --role "$preferred_customer" --principal "$badcoyote_prin"