2018-11-23 12:30:45 +00:00
|
|
|
import datetime
|
2019-02-26 17:25:07 +00:00
|
|
|
import json
|
2018-11-23 12:30:45 +00:00
|
|
|
import os
|
|
|
|
|
import shutil
|
2019-02-26 17:25:07 +00:00
|
|
|
|
2018-11-23 12:30:45 +00:00
|
|
|
import maya
|
|
|
|
|
from twisted.logger import globalLogPublisher
|
|
|
|
|
|
2019-02-26 17:25:07 +00:00
|
|
|
from nucypher.characters.lawful import Bob, Ursula
|
|
|
|
|
from nucypher.config.characters import AliceConfiguration
|
|
|
|
|
from nucypher.crypto.powers import DecryptingPower, SigningPower
|
|
|
|
|
from nucypher.network.middleware import RestMiddleware
|
|
|
|
|
from nucypher.utilities.logging import SimpleObserver
|
2018-11-23 12:30:45 +00:00
|
|
|
|
|
|
|
|
|
|
|
|
|
######################
|
|
|
|
|
# Boring setup stuff #
|
|
|
|
|
######################
|
2019-03-06 21:18:51 +00:00
|
|
|
|
|
|
|
|
|
|
|
|
|
# Twisted Logger
|
2018-12-15 20:00:30 +00:00
|
|
|
globalLogPublisher.addObserver(SimpleObserver())
|
2019-03-06 21:18:51 +00:00
|
|
|
|
|
|
|
|
TEMP_ALICE_DIR = os.path.join('/', 'tmp', 'heartbeat-demo-alice')
|
2018-11-23 12:30:45 +00:00
|
|
|
|
2018-11-27 12:47:21 +00:00
|
|
|
# We expect the url of the seednode as the first argument.
|
2019-01-13 18:45:15 +00:00
|
|
|
SEEDNODE_URL = 'localhost:11500'
|
2018-11-23 12:30:45 +00:00
|
|
|
|
2019-03-06 21:18:51 +00:00
|
|
|
POLICY_FILENAME = "policy-metadata.json"
|
|
|
|
|
|
2018-11-23 12:30:45 +00:00
|
|
|
|
2018-11-27 12:47:21 +00:00
|
|
|
#######################################
|
|
|
|
|
# Alicia, the Authority of the Policy #
|
|
|
|
|
#######################################
|
2018-11-23 12:30:45 +00:00
|
|
|
|
|
|
|
|
|
2018-11-27 12:47:21 +00:00
|
|
|
# We get a persistent Alice.
|
2019-01-13 18:45:15 +00:00
|
|
|
# If we had an existing Alicia in disk, let's get it from there
|
|
|
|
|
|
2018-11-23 12:30:45 +00:00
|
|
|
passphrase = "TEST_ALICIA_INSECURE_DEVELOPMENT_PASSWORD"
|
2019-03-06 21:18:51 +00:00
|
|
|
# If anything fails, let's create Alicia from scratch
|
|
|
|
|
# Remove previous demo files and create new ones
|
|
|
|
|
|
|
|
|
|
shutil.rmtree(TEMP_ALICE_DIR, ignore_errors=True)
|
|
|
|
|
|
|
|
|
|
ursula = Ursula.from_seed_and_stake_info(seed_uri=SEEDNODE_URL,
|
|
|
|
|
federated_only=True,
|
|
|
|
|
minimum_stake=0)
|
|
|
|
|
|
|
|
|
|
alice_config = AliceConfiguration(
|
|
|
|
|
config_root=os.path.join(TEMP_ALICE_DIR),
|
|
|
|
|
is_me=True,
|
|
|
|
|
known_nodes={ursula},
|
|
|
|
|
start_learning_now=False,
|
|
|
|
|
federated_only=True,
|
|
|
|
|
learn_on_same_thread=True,
|
|
|
|
|
)
|
|
|
|
|
|
|
|
|
|
alice_config.initialize(password=passphrase)
|
|
|
|
|
|
|
|
|
|
alice_config.keyring.unlock(password=passphrase)
|
|
|
|
|
alicia = alice_config.produce()
|
|
|
|
|
|
|
|
|
|
# We will save Alicia's config to a file for later use
|
|
|
|
|
alice_config_file = alice_config.to_configuration_file()
|
2018-11-23 12:30:45 +00:00
|
|
|
|
2018-11-27 12:47:21 +00:00
|
|
|
# Let's get to learn about the NuCypher network
|
|
|
|
|
alicia.start_learning_loop(now=True)
|
|
|
|
|
|
|
|
|
|
# At this point, Alicia is fully operational and can create policies.
|
|
|
|
|
# The Policy Label is a bytestring that categorizes the data that Alicia wants to share.
|
|
|
|
|
# Note: we add some random chars to create different policies, only for demonstration purposes
|
|
|
|
|
label = "heart-data-❤️-"+os.urandom(4).hex()
|
|
|
|
|
label = label.encode()
|
2018-11-23 12:30:45 +00:00
|
|
|
|
2018-11-27 12:47:21 +00:00
|
|
|
# Alicia can create the public key associated to the policy label,
|
|
|
|
|
# even before creating any associated policy.
|
2019-06-01 10:32:46 +00:00
|
|
|
policy_pubkey = alicia.get_policy_encrypting_key_from_label(label)
|
2018-11-23 12:30:45 +00:00
|
|
|
|
2018-11-27 12:47:21 +00:00
|
|
|
print("The policy public key for "
|
|
|
|
|
"label '{}' is {}".format(label.decode("utf-8"), policy_pubkey.to_bytes().hex()))
|
|
|
|
|
|
|
|
|
|
# Data Sources can produce encrypted data for access policies
|
2018-11-23 12:30:45 +00:00
|
|
|
# that **don't exist yet**.
|
2018-11-27 12:47:21 +00:00
|
|
|
# In this example, we create a local file with encrypted data, containing
|
|
|
|
|
# heart rate measurements from a heart monitor
|
2018-11-23 12:30:45 +00:00
|
|
|
import heart_monitor
|
|
|
|
|
heart_monitor.generate_heart_rate_samples(policy_pubkey,
|
2019-02-07 09:16:14 +00:00
|
|
|
samples=50,
|
2018-11-23 12:30:45 +00:00
|
|
|
save_as_file=True)
|
|
|
|
|
|
|
|
|
|
|
2018-11-27 12:47:21 +00:00
|
|
|
# Alicia now wants to share data associated with this label.
|
|
|
|
|
# To do so, she needs the public key of the recipient.
|
|
|
|
|
# In this example, we generate it on the fly (for demonstration purposes)
|
|
|
|
|
from doctor_keys import get_doctor_pubkeys
|
2018-11-23 12:30:45 +00:00
|
|
|
doctor_pubkeys = get_doctor_pubkeys()
|
|
|
|
|
|
2018-11-27 12:47:21 +00:00
|
|
|
# We create a view of the Bob who's going to be granted access.
|
2019-05-08 14:05:25 +00:00
|
|
|
doctor_strange = Bob.from_public_keys(verifying_key=doctor_pubkeys['sig'],
|
|
|
|
|
encrypting_key=doctor_pubkeys['enc'],
|
2018-11-23 12:30:45 +00:00
|
|
|
federated_only=True)
|
|
|
|
|
|
2018-11-27 12:47:21 +00:00
|
|
|
# Here are our remaining Policy details, such as:
|
|
|
|
|
# - Policy duration
|
|
|
|
|
policy_end_datetime = maya.now() + datetime.timedelta(days=5)
|
|
|
|
|
# - m-out-of-n: This means Alicia splits the re-encryption key in 5 pieces and
|
|
|
|
|
# she requires Bob to seek collaboration of at least 3 Ursulas
|
2019-02-07 09:16:14 +00:00
|
|
|
m, n = 2, 3
|
2018-11-27 12:47:21 +00:00
|
|
|
|
2018-11-23 12:30:45 +00:00
|
|
|
|
2018-11-27 12:47:21 +00:00
|
|
|
# With this information, Alicia creates a policy granting access to Bob.
|
|
|
|
|
# The policy is sent to the NuCypher network.
|
|
|
|
|
print("Creating access policy for the Doctor...")
|
2018-11-23 12:30:45 +00:00
|
|
|
policy = alicia.grant(bob=doctor_strange,
|
|
|
|
|
label=label,
|
|
|
|
|
m=m,
|
|
|
|
|
n=n,
|
|
|
|
|
expiration=policy_end_datetime)
|
2018-11-27 12:47:21 +00:00
|
|
|
print("Done!")
|
2018-11-23 12:30:45 +00:00
|
|
|
|
2018-11-27 12:47:21 +00:00
|
|
|
# For the demo, we need a way to share with Bob some additional info
|
|
|
|
|
# about the policy, so we store it in a JSON file
|
2018-11-23 12:30:45 +00:00
|
|
|
policy_info = {
|
|
|
|
|
"policy_pubkey": policy.public_key.to_bytes().hex(),
|
|
|
|
|
"alice_sig_pubkey": bytes(alicia.stamp).hex(),
|
|
|
|
|
"label": label.decode("utf-8"),
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
filename = POLICY_FILENAME
|
|
|
|
|
with open(filename, 'w') as f:
|
|
|
|
|
json.dump(policy_info, f)
|
|
|
|
|
|
