This is an example of using TUF to bootstrap and distribute in-toto metadata.
This example is an extension of the PR#444
This example implements the following actions:
- TUF Repository Infrastructure initialization
- Client Infrastructure initialization
- Download target files from TUF Repository
Run the following command to generate repo metadata. The targets file are root.layout and alice.pub. The root layout file is generated using the in-toto layout web tool and signed by the alice's key. These files are copied from PR#444.
$ cd repo_generate
$ python basic_repo.py
The generated repo metadata will be stored in a temp folder. Then you need to move all the metadata files to the repo_example/metadata folder, and move the 1.root.json to the client_example folder.
Run the repository using the Python3 built-in HTTP module, and keep this session running.
$ python3 -m http.server -d repo_example
Serving HTTP on :: port 8000 (http://[::]:8000/) ... $ cd client_example
$ ./client_example.py download root.layout
$ ./client_example.py download alice.pub
Before you perform this step, you may need to clean up the files under the ~/.local/share/python-tuf-cilent-example/ folder.
$ cd client_with_bad_root
$ ./client_example.py download root.layout
Then you should receive something like Failed to download target root.layout: root was signed by 0/1 keys