From 103e0ee850404a5c8dc69bbbf79b2508a9c55d7a Mon Sep 17 00:00:00 2001
From: Magnus Ahltorp <map@kth.se>
Date: Thu, 26 Feb 2015 16:54:26 +0100
Subject: Added authentication between frontend and storage nodes

---
 test/config/frontend-1.config | 21 ++++++++++++++++++++-
 1 file changed, 20 insertions(+), 1 deletion(-)

(limited to 'test/config/frontend-1.config')

diff --git a/test/config/frontend-1.config b/test/config/frontend-1.config
index 79d887d..35631d1 100644
--- a/test/config/frontend-1.config
+++ b/test/config/frontend-1.config
@@ -31,5 +31,24 @@
    {treesize_path, "tests/machine/machine-1/db/treesize"},
    {indexforhash_root_path, "tests/machine/machine-1/db/certindex/"},
    {storage_nodes, ["https://127.0.0.1:8081/ct/storage/"]},
-   {storage_nodes_quorum, 1}
+   {storage_nodes_quorum, 1},
+   {publickey_path, "publickeys"},
+   {own_key, {"frontend-1", "privatekeys/frontend-1-private.pem"}},
+   {allowed_clients, [{"/ct/frontend/sendentry", noauth},
+                      {"/ct/frontend/sendlog", noauth},
+                      {"/ct/frontend/sendsth", noauth},
+                      {"/ct/frontend/currentposition", noauth},
+                      {"/ct/frontend/missingentries", noauth},
+                      {"/ct/v1/add-chain", noauth},
+                      {"/ct/v1/add-pre-chain", noauth},
+                      {"/ct/v1/get-sth", noauth},
+                      {"/ct/v1/get-sth-consistency", noauth},
+                      {"/ct/v1/get-proof-by-hash", noauth},
+                      {"/ct/v1/get-entries", noauth},
+                      {"/ct/v1/get-entry-and-proof", noauth},
+                      {"/ct/v1/get-roots", noauth}
+                     ]},
+   {allowed_servers, [{"/ct/storage/sendentry", ["storage-1"]},
+                      {"/ct/storage/entrycommitted", ["storage-1"]}
+                     ]}
   ]}].
-- 
cgit v1.1


From 90bd73177964246a0e1a5d6c5e4255dcc8ec700d Mon Sep 17 00:00:00 2001
From: Magnus Ahltorp <map@kth.se>
Date: Fri, 27 Feb 2015 13:53:32 +0100
Subject: Require authentication for merge calls

---
 test/config/frontend-1.config | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

(limited to 'test/config/frontend-1.config')

diff --git a/test/config/frontend-1.config b/test/config/frontend-1.config
index 35631d1..9d7e37c 100644
--- a/test/config/frontend-1.config
+++ b/test/config/frontend-1.config
@@ -34,11 +34,11 @@
    {storage_nodes_quorum, 1},
    {publickey_path, "publickeys"},
    {own_key, {"frontend-1", "privatekeys/frontend-1-private.pem"}},
-   {allowed_clients, [{"/ct/frontend/sendentry", noauth},
-                      {"/ct/frontend/sendlog", noauth},
-                      {"/ct/frontend/sendsth", noauth},
-                      {"/ct/frontend/currentposition", noauth},
-                      {"/ct/frontend/missingentries", noauth},
+   {allowed_clients, [{"/ct/frontend/sendentry", ["merge-1"]},
+                      {"/ct/frontend/sendlog", ["merge-1"]},
+                      {"/ct/frontend/sendsth", ["merge-1"]},
+                      {"/ct/frontend/currentposition", ["merge-1"]},
+                      {"/ct/frontend/missingentries", ["merge-1"]},
                       {"/ct/v1/add-chain", noauth},
                       {"/ct/v1/add-pre-chain", noauth},
                       {"/ct/v1/get-sth", noauth},
-- 
cgit v1.1