Added Partial DU methods

Author: g4gekkouga

DecisionUnit.go

@@ -0,0 +1,48 @@
+package HLF_ABAC
+
+import (
+	"fmt"
+
+	"github.com/hyperledger/fabric-contract-api-go/contractapi"
+)
+
+func getContext() *map[string]string {
+	return nil
+}
+
+func isValid(rule *Policy, UAPub *map[string]string, RAPub *map[string]string, RAPriv *map[string]string, EA *map[string]string, OP string) bool {
+	return true
+}
+
+func validateAccess(ctx contractapi.TransactionContextInterface, userIDHash string, resourceID string, operation string, collection string) (*Resource, error) {
+
+	if len(userIDHash) == 0 {
+		return nil, fmt.Errorf("Please enter valid Subject ID")
+	}
+
+	if len(resourceID) == 0 {
+		return nil, fmt.Errorf("Please enter valid Object ID")
+	}
+
+	userID, err := GetSubmittingClientIdentity(ctx)
+	userPubKey, err := GetSubmittingClientPubKey(ctx)
+
+	// User Verification
+
+	UAPub := getUAPub(ctx, userID).Attributes
+	RAPub := getRAPub(ctx, resourceID).Attributes
+	RAPriv := getRAPriv(ctx, resourceID, collection).Attributes
+	EA := getContext()
+
+	POL := getPolicySet(ctx)
+
+	for _, rule := range POL {
+		if !isValid(rule, UAPub, RAPub, RAPriv, EA, operation) {
+			continue
+		}
+
+		return getResource(ctx, resourceID, collection), nil
+	}
+
+	return nil, fmt.Errorf("Access Denied")
+}

Owner.go

@@ -99,7 +99,7 @@ func updateRAPub(ctx contractapi.TransactionContextInterface, resourceID string,
 		Attributes: attrsmap,
 	}
 
-	resourceAttrJSON, err := json.Marshal(resourceAttr)
+	resourceAttrJSON, err = json.Marshal(resourceAttr)
 	if err != nil {
 		return "", err
 	}
@@ -210,7 +210,7 @@ func updateRAPriv(ctx contractapi.TransactionContextInterface, resourceID string
 		Attributes: attrsmap,
 	}
 
-	resourceAttrJSON, err := json.Marshal(resourceAttr)
+	resourceAttrJSON, err = json.Marshal(resourceAttr)
 	if err != nil {
 		return "", err
 	}

Policy.go

@@ -13,10 +13,11 @@ type Policy struct {
 	UserAttr     map[string]string `json:"userAttr"`
 	ResourceAttr map[string]string `json:"resourceAttr"`
 	EnvAttr      map[string]string `json:"envAttr"`
+	Operation    string            `json:"op"`
 	Rules        map[string]string `json:"rules"`
 }
 
-func registerPolicy(ctx contractapi.TransactionContextInterface, policyID string, userAttr string, resourceAttr string, envAttr string, rules string) (string, error) {
+func registerPolicy(ctx contractapi.TransactionContextInterface, policyID string, userAttr string, resourceAttr string, envAttr string, operation string, rules string) (string, error) {
 
 	if len(policyID) == 0 {
 		return "", fmt.Errorf("Please enter valid Policy ID")
@@ -63,6 +64,7 @@ func registerPolicy(ctx contractapi.TransactionContextInterface, policyID string
 		UserAttr:     userAttrsMap,
 		ResourceAttr: resourceAttrsMap,
 		EnvAttr:      envAttrsMap,
+		Operation:    operation,
 		Rules:        rulesMap,
 	}
 

Resource.go

@@ -80,7 +80,7 @@ func updateResource(ctx contractapi.TransactionContextInterface, resourceID stri
 		Data:       data,
 	}
 
-	resourceJSON, err := json.Marshal(resource)
+	resourceJSON, err = json.Marshal(resource)
 	if err != nil {
 		return "", err
 	}

User.go

@@ -126,7 +126,7 @@ func updateUAPub(ctx contractapi.TransactionContextInterface, userID string, use
 		Attributes: attrsmap,
 	}
 
-	userJSON, err := json.Marshal(user)
+	userJSON, err = json.Marshal(user)
 
 	if err != nil {
 		return "", err