[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Handle-info] setup of a local handle server..
The authorization to create handles under a prefix is stored in HS_ADMIN values of the prefix handle (0.NA/841, 0.NA/842, etc.).
For your test, I believe it would work to home 0.NA/0.NA on your handle server, and create prefix handles 0.NA/841, etc., with HS_ADMIN values giving rights to the various admin handles.
Robert
On Apr 7, 2014, at 7:02 AM, Robert Verkerk <robert.verkerk@surfsara.nl> wrote:
> Hi Robert,
> 
> We now have the following situation:
> 
> homed prefixes: 841 till 849
> admin handle for the server in config.dct is 841/ADMIN
> 
> If I use the admin handle (841/ADMIN) I am able to add handles using the hdl-admintool. f.i. 841/test, 842/ADMIN and 843/ADMIN.
> 
> 
> But what I want is to add for each prefix a handle with the correct pubkey and items so each prefix has his own private key to add/modify/delete new handles for this prefix. This so a prefix can only create/modify/delete handles for it's own prefix.
> 
> If I now authenticate with the private key from 843/ADMIN I am NOT able to add handles which start with the prefix 843. The <local_ip> is the ip of the machine where the local handle server is running. The error message I get is that it states "INVALID ADMIN".
> 
> This is my sequence:
>  sending HDL-TCP request (version=2.5; oc=1; rc=0; snId=0 crt caCrt noAuth expires:Tue Apr 08 00:42:24 CEST 2014 843/ADMIN [ ] [ ]) to <local_ip>:2642
>    received HDL-TCP response: version=2.5; oc=1; rc=1; snId=0 crt caCrt auth noAuth expires:Tue Apr 08 00:42:24 CEST 2014 843/ADMIN
>    index=100 type=HS_ADMIN rwr- "047300000008302E4E412F3834330000012C"
>    index=300 type=HS_PUBKEY rwr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
> 
> message processed in 13 ms
>  sending HDL-TCP request (version=2.5; oc=1; rc=0; snId=0 crt caCrt auth noAuth expires:Tue Apr 08 00:43:49 CEST 2014 843/test [ ] [ ]) to <local_ip>:2642
>    received HDL-TCP response: Error(100): HANDLE NOT FOUND
> message processed in 13 ms
>  sending HDL-TCP request (version=2.5; oc=400; rc=0; snId=0 crt caCrt noAuth expires:Tue Apr 08 00:43:58 CEST 2014 /) to <local_ip>:2642
>    received HDL-TCP response: version=2.5; oc=400; rc=1; snId=5 crt caCrt auth noAuth expires:Tue Apr 08 00:43:58 CEST 2014
>  sending HDL-TCP request (version=2.5; oc=100; rc=0; snId=5 caCrt noAuth expires:Tue Apr 08 00:43:58 CEST 2014 adm 843/test) to <local_ip>:2642
>    received HDL-TCP response: version=2.5; oc=100; rc=402; snId=5 caCrt auth noAuth expires:Tue Apr 08 00:43:58 CEST 2014
>  sending HDL-TCP request (version=2.5; oc=200; rc=0; snId=5 caCrt noAuth expires:Tue Apr 08 00:43:58 CEST 2014 / HS_PUBKEY 300:843/ADMIN) to <local_ip>:2642
>    received HDL-TCP response: Error(400): INVALID ADMIN
> 
> 
> Greetings,
> 
> Robert Verkerk
> 
> 
> 
> 
> 
> 
> On 07-04-14 11:24, Robert Verkerk wrote:
>> Hi Robert,
>> 
>> You were correct! I already used to add the trick to add something in the handle with the fake index. Than I am able to add new info. But you have to do it correct at once. if you want to update the handle this is almost not doable. The fields in the update mode are almost not readable. (only a few pixels wide)
>> 
>> But I have created the handle "841/ADMIN" and I am able to use it to authenticate as the user "841/ADMIN" with the adminpriv key. Now I am able to add new handles once the handle server is started with the admin user.
>> 
>> Greetings and thanks,
>> 
>> Robert Verkerk
>> 
>> 
>> On 04-04-14 17:03, Robert R Tupelo-Schneck wrote:
>>> The hdl-dbtool is old and clunky.  I believe there is an issue with adding handle values such that the right information only gets added if there is already an existing value.  As a workaround, I believe you can click "Add", creating a handle value with index "-1", then actually enter the data you want (index 300, type HS_PUBKEY, data loaded from file), then click "Add" again, then delete the fake value with index "-1".   Let us know if that works for you.
>>> 
>>> Robert
>>> 
>>> On Apr 4, 2014, at 9:53 AM, Robert Verkerk <robert.verkerk@surfsara.nl> wrote:
>>> 
>>>> Hi,
>>>> 
>>>> We are installing a new handle server (v7.3.1) with a specific application which talks to the handle server. To test if the application works we want to setup a local handle server. The hdl 7.0 (version 1.1) manual status how to do this.http://www.handle.net/tech_manual/Handle_Tech_Manual_7_v1-1-22Dec10.pdf
>>>> 
>>>> I am following chapter 10 to setup a local handle server. But I have no luck with the step at chapter 10.2 step 3.
>>>> 1> We have homed prefix 0.NA/841using hdl-dbtool.
>>>> 2> we have created handle 841/ADMIN using hdl-dbtool.
>>>> I am unable to add the HS_PUBKEY using the hdl-dbtool to the handle 841/ADMIN using the hdl-dbtool. Is there a specific way to do this? Or am I missing something?
>>>> 
>>>> There must be more people who have done this. Does anybody have some thoughts about it? Or is there somewhere else a manual with more info about this setup?
>>>> 
>>>> Greetings,
>>>> 
>>>> Robert Verkerk
>>>> 
>>>> _______________________________________________
>>>> Handle-Info mailing list
>>>> Handle-Info@cnri.reston.va.us
>>>> http://www.handle.net/mailman/listinfo/handle-info
>>> 
>>> _______________________________________________
>>> Handle-Info mailing list
>>> Handle-Info@cnri.reston.va.us
>>> http://www.handle.net/mailman/listinfo/handle-info
>> 
>> 
> 
> 
> -- 
> Met vriendelijke groet,
> 
> Robert Verkerk
> systeem programmeur
> Data Services
> 
> SURFsara heeft een nieuw algemeen telefoonnummer: 020 800 1300
> 
> Robert Verkerk
> | Dataservices | SURFsara | Science Park 140 | 1098 XG Amsterdam | T +31 (0)20 8001318 | robert.verkerk@surfsara.nl | www.surfsara.nl
> 
_______________________________________________
Handle-Info mailing list
Handle-Info@cnri.reston.va.us
http://www.handle.net/mailman/listinfo/handle-info