Changes between Version 2 and Version 3 of NewStuff


Ignore:
Timestamp:
Jun 17, 2013 5:53:08 PM (11 years ago)
Author:
faber
Comment:

--

Legend:

Unmodified
Added
Removed
Modified

  • NewStuff

    v2 v3  
    1 [TOC]
     1[[TOC]]
    22
    33= New Features In The Coming Release =
     
    3535}}}
    3636
    37 Identities loaded incidentally are includes in the results of the Context's {{{identities}}} method.
    3837
    3938== New Credential Formats and Multiple Credential Formats ==
    4039
    41 This release supports multiple credential formats, specifically version 1 and version 1.1 [http://http://groups.geni.net/geni/wiki/TIEDCredentials GENI credentials] as well as reading GENI privilege credentials.  Credentials read from files or chunks are transparenlty output as read, for example if they appear in a proof or if they are extracted from a context.  Credentials that are created by an application are output in GENI v1.1 format by default, but can be created in GENI v1.0 using the set_output format of the Attribute object.  Valid parameters to {{{set_output_format}}} are:
     40This release supports multiple credential formats, specifically version 1.0 and version 1.1 [http://http://groups.geni.net/geni/wiki/TIEDCredentials GENI credentials] as well as reading GENI privilege credentials.  Credentials read from files or chunks are transparently output as read, for example if they appear in a proof or if they are extracted from a context.  Credentials that are created by an application are output in GENI v1.1 format by default, but can be created in GENI v1.0 format using the {{{set_output_format}}} method of the Attribute object.  Valid parameters to {{{set_output_format}}} are:
    4241
    4342 * GENIv1.0
     
    152151== Printing Credentials Using Mnemonic Names Instead of Keyids ==
    153152
    154 Internally libabac uses the SHA1 hash of a principal's public key to identify them, but when printing credentials and debugging policy it can be confusing to keep track of the hashes.  The latest release keeps track of mnemonic names for principals within the scope of a Context.  The names can be specified in the common name of an X.509 identity certificate, the {{{mnemonic}}} element of a [http://http://groups.geni.net/geni/wiki/TIEDCredentials version 1.1 GENI abac credential], or specified on a per-Context basis using the Context's {{{set_nickname}} method.
     153Internally libabac uses the SHA1 hash of a principal's public key to identify them, but when printing credentials and debugging policy it can be confusing to keep track of the hashes.  The latest release keeps track of mnemonic names for principals within the scope of a Context.  The names can be specified in the common name of an X.509 identity certificate, the {{{mnemonic}}} element of a [http://http://groups.geni.net/geni/wiki/TIEDCredentials version 1.1 GENI abac credential], or specified on a per-Context basis using the Context's {{{set_nickname}}} method.
    155154
    156155When printing a role from a credential, the {{{short_string(}}}''context''{{{)}}} method will scan the role for keyids that have mnemonics in that context and return a translated string.  For exmaple: