Google Git
Sign in
vanadium / release.go.x.ref / c24ff422f4fd85e6c2c8cd9efe5b9ef03bff375c^! / . / security / principal.go
commitc24ff422f4fd85e6c2c8cd9efe5b9ef03bff375c[log] [tgz]
authorAnkur <ataly@google.com>Tue Dec 16 17:59:26 2014 -0800
committerAnkur <ataly@google.com>Tue Dec 16 17:59:28 2014 -0800
treeab48122ace7f8382c89ae5e7f1454a6732fb24f7
parentb0b63fc95394c9ebf4ba0a46ee1fdd1d77fe589d [diff] [blame]
"veyron/tools/principal": Fork Command

In order to make it easy to set up a new credentials directory
that is blessed by an existing principal (e.g., setting up an
'alice-phone' directory blessed by 'alice'), this CL adds the
'fork' command to the principal tool.
Usage:
  principal --veyron.credentials=<parent dir> <child-dir> <extension>

  This command populates <child-dir> with a new principal that is
  blessed by the principal in <parent-dir>. <child-dir> must not have
  a principal already specified in it unless an --overwrite flag is
  provided. The blessing for <child-dir> comes form the default blessing
  of the <parent-dir> principal, unless a --with flag is provided.

Change-Id: Icfe53c551ac0a0d9083b5280b0cc4b6a9a9d2ede

diff --git a/security/principal.go b/security/principal.go
index 4ebf6e6..304c4d1 100644
--- a/security/principal.go
+++ b/security/principal.go

@@ -114,23 +114,31 @@
 	return NewPrincipalFromSigner(security.NewInMemoryECDSASigner(key), state)
 }
 
+// SetDefaultBlessings sets the provided blessings as default and shareable with
+// all peers on provided principal's BlessingStore, and also adds it as a root to
+// the principal's BlessingRoots.
+func SetDefaultBlessings(p security.Principal, blessings security.Blessings) error {
+	if err := p.BlessingStore().SetDefault(blessings); err != nil {
+		return err
+	}
+	if _, err := p.BlessingStore().Set(blessings, security.AllPrincipals); err != nil {
+		return err
+	}
+	if err := p.AddToRoots(blessings); err != nil {
+		return err
+	}
+	return nil
+}
+
 // InitDefaultBlessings uses the provided principal to create a self blessing for name 'name',
 // sets it as default on the principal's BlessingStore and adds it as root to the principal's BlessingRoots.
+// TODO(ataly): Get rid this function given that we have SetDefaultBlessings.
 func InitDefaultBlessings(p security.Principal, name string) error {
 	blessing, err := p.BlessSelf(name)
 	if err != nil {
 		return err
 	}
-	if err := p.BlessingStore().SetDefault(blessing); err != nil {
-		return err
-	}
-	if _, err := p.BlessingStore().Set(blessing, security.AllPrincipals); err != nil {
-		return err
-	}
-	if err := p.AddToRoots(blessing); err != nil {
-		return err
-	}
-	return nil
+	return SetDefaultBlessings(p, blessing)
 }
 
 func mkDir(dir string) error {