I have not received any replies. i would appreciate any help in this regard.
Thanks, -Rami ________________________________ From: iotivity-dev-bounces at lists.iotivity.org <iotivity-dev-bounces at lists.iotivity.org> on behalf of rami alshafi <[email protected]> Sent: Wednesday, June 7, 2017 2:55:22 PM To: iotivity-dev at lists.iotivity.org Subject: [dev] Help needed with resource secure restricted access Hi Developers, I need help restricting access to a secure resource. I am running the sampleserver_justworks secure server application with a secure led resource that can run without issues with anonymous subjects. However, when I restrict the access of the secure led to a specific subject uuid then I can no longer access the secure led resource even though the client application has its subject uuid matching the one allowed by the access control entry hosting the secure led resource. I keep getting "OS_STACK_UNAUTHORIZED_REQ" response. I have attached the json files that I used to after converting them to cbor along with the text copy of the code of both applications and the logs. I would appreciate the help. From what I can tell, the problem seems to be when the IsRequestFromDevOwner() function (in policyengine.c) returns false because the requestInfo.info.identity.id is not updated with the client's subject uuid which is what the Policy Engine uses to update its context and eventually used to compare it with the allowed subject uuid defined by the ACE hosting the secure led. Another theory is that the fact the communication channel is not secure because the CA_SECURE is not set, which I have no idea how to set. If anyone know how to set it to true, please let me know. Thanks -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://lists.iotivity.org/pipermail/iotivity-dev/attachments/20170614/a60e96d5/attachment.html>
