[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Handle-info] Local PUBKEY Authentication

To: handle-info@cnri.reston.va.us
Subject: [Handle-info] Local PUBKEY Authentication
From: Christian Bay <christian.bay@posteo.net>
Date: Thu, 20 May 2021 10:11:37 +0000
Authentication-results: secondarymx.cnri.reston.va.us; dkim=pass (2048-bit key; unprotected) header.d=posteo.net header.i=@posteo.net header.b=d3i6keKf
Delivered-to: handle-info-archive@cnriweb-cogent.cnri.reston.va.us
Delivered-to: handle-info@cnriweb.cnri.reston.va.us
Dkim-filter: OpenDKIM Filter v2.10.3 secondarymx.cnri.reston.va.us B4182582C85
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/simple; d=posteo.net; s=2017; t=1621505499; bh=iApxaC/0NQcEyOc0NXeeWuYVGNaE2BTMbUuubODl3nA=; h=From:To:Subject:Date:From; b=d3i6keKfFo+oTL4D6WmuOn8ZNGiIeVu2wDQRBrfsilRMwHPTtMfnCQO8qIPjtIdAN +8Hj7oRFvOQ0K9RTsbYH4xxjehY3BoidcwiPSS+NG+bQNtW+BK93AElbMcT0yMDy7G Ad0dgcWihSVbYCtMmkoIEo08czNrlgIOPr+Dcsbtg5xYjoXS6S8n2pO0Cr2ScF1l5e TS81c0UTyUAJGN5T/w0fELl9rlMRP12JHcEh2zy/asK04hik8WFVEIf9QEvrK6Tad6 L2VjZ/Yokez8Psg125c9AQ6H2DXw13nSnRnITC5oXkkN3SSujfvEsnH+vuw4DWFlWo A0NhRNHsb5DLA==
List-archive: <http://www.handle.net/mailman/private/handle-info/>
List-help: <mailto:handle-info-request@cnri.reston.va.us?subject=help>
List-id: "Handle.Net Mailing List" <handle-info.cnri.reston.va.us>
List-post: <mailto:handle-info@cnri.reston.va.us>
List-subscribe: <http://www.handle.net/mailman/listinfo/handle-info>, <mailto:handle-info-request@cnri.reston.va.us?subject=subscribe>
List-unsubscribe: <http://www.handle.net/mailman/options/handle-info>, <mailto:handle-info-request@cnri.reston.va.us?subject=unsubscribe>
Sender: handle-info-bounces@cnri.reston.va.us

Hey :)

I'm running an Handle Server locally for testing purposes and am facinga problem when trying to authenticate myself locally via a PUBKEY.

I set up everything to work locally without communicating to the GHR asdescribed in Chapter 10 of the Technical Manual.


In Chapter 10.2 it is explained how to authenticate with a secret key:

'Create the new admin handle using the DBTool, and associate a secretkey (password) with it [...]' (Chapter 10.2 Technical Manual)


Which works with the admin tool.

However, later on in production I want to use the PUBKEY authenticationstrategy. For example for the REST-APIchallenge response framework (Chapter 14.6.4). An example implementationcan be found


here https://github.com/theNBS/handleserver-samples/tree/master/python

But this doesn't work yet.

I created an Admin Handle under 5678/ADMIN with four values:

100 HS_ADMIN 2021-05-20 08:26:32Z handle=5678/ADMIN; index=200; [createhdl,delete hdl,create derived prefix,delete derived prefix,readval,modify val,del val,add val,modify admin,del admin,add admin,list]

200	HS_VLIST	2021-05-20 08:26:32Z 	300:5678/ADMIN
300	HS_PUBKEY	2021-05-20 08:26:32Z	<SOME PUBKEY>
301     HS_SECKEY       2021-05-20 08:26:32Z    password

Home prefixes where established as well (for 0.NA/5678 and 5678)

Neither with the admin tool, nor with the python script, nor the helperscripts I am able to authenticate myself. I don't see any errors in thelogs nor the output of the admin tool. The REST API only returns a 401Unauthorized.

However, when I run the helper script

'./bin/hdl-list 5678/ADMIN 300 config/privkey.bin 5678'

it states, that the prefix doesn't live here and the root info is missing.

I'm not sure what to make out of this information. The authenticationworks with the secret key procedure and the prefix 5678 and 0.NA/5678are home with the DBTool and Admintool.

Has someone a clue what I am missing or has been able to set this uplocally?


Best,
Christian



_______________________________________________
Handle-Info mailing list
Handle-Info@cnri.reston.va.us
http://www.handle.net/mailman/listinfo/handle-info

Prev by Date: Re: [Handle-info] Question about the handle root
Next by Date: Re: [Handle-info] Local PUBKEY Authentication
Previous by thread: [Handle-info] Question about the handle root
Next by thread: Re: [Handle-info] Local PUBKEY Authentication
Index(es):
- Date
- Thread