Changes between Version 14 and Version 15 of FeddABAC


Ignore:
Timestamp:
Apr 9, 2012 3:01:10 PM (13 years ago)
Author:
faber
Comment:

--

Legend:

Unmodified
Added
Removed
Modified

  • FeddABAC

    v14 v15  
    102102    The key for signing attributes.  It should be a pem file with an RSA key in it.  This can be omitted if {{{--cert}}} specifies a combination file.
    103103  {{{--dir=}}}''dir''::
    104     The output directory for the authorizer.
     104    The output directory for the authorizer.   (This must be an absolute pathname).
     105
    105106  {{{--make_dir}}}::
    106107    If given, make the output directory.
     
    125126    The key for signing attributes.  It should be a pem file with an RSA key in it.  This can be omitted if {{{--cert}}} specifies a combination file.
    126127  {{{--dir=}}}''dir''::
    127     The output directory for the authorizer.
     128    The output directory for the authorizer.   (This must be an absolute pathname).
    128129  {{{--type=}}}''type''::
    129130    The type of access controller used by the [FeddConfig#AccessOptions access_type] configuration directive.  Used to parse the various formats of the old accessDB.
     
    145146If {{{--file}}} is not given, the [FeddDatabases#AccessComponentAccessDB accessDB] to convert must follow.
    146147
     148=== import_abac_creds.py ===
     149
     150The import_abac_creds.py program adds ABAC credential held in X.509 certificates directly to an ABAC authorizer used by fedd.  This authorizer is created by either [wiki:FeddABAC#fedd_to_abac.py fedd_to_abac.py] or [wiki:FeddABAC#access_to_abac.py access_to_abac.py].  The command takes an argument of the form:
     151
     152  {{{--dir=}}}''dir''::
     153    The output directory for the authorizer.  (This must be an absolute pathname).
     154
     155The remaining parameters are a list of files containing the certificates to add.  These can be identity or attribute certificates.  To add an attribute certificate signed by issuer.pem and contained in attr.der to an authroizer in {{{/usr/local/etc/fedd/abac}}} the command is:
     156
     157{{{
     158$ import_abac_creds.py --dir /usr/local/etc/fedd/abac issuer.pem attr.der
     159}}}
     160
     161You can confirm the addition of the certificates using [wiki:FeddABAC#dump_abac_authorizer.py dump_abac_authorizer.py].
     162
    147163== User Credentials ==
    148164