Get submitting and storing working.

Add README.dnssec.
Do start the dnssecport server.
Add config option 'trust_anchors_file'.
Pass correct data to validation server.
Change URL for submitting to match draft (add-rr-chain).
Make add-rr-chain take a base64-encoded string of RR's instead of JSON
list with one RR per entry.

TODO: Make the python tools know enough DNS to be able to verify SCT's
and such (i.e. 'make tests').

1 files changed, 9 insertions, 8 deletions

diff --git a/tools/compileconfig.py b/tools/compileconfig.py
index e747fad..c236e1d 100755
--- a/tools/compileconfig.py
+++ b/tools/compileconfig.py
@@ -147,13 +147,13 @@ def allowed_clients_mergesecondary(primarymergenode):
 def allowed_clients_public():
     noauth = Symbol("noauth")
     return [
-        ("/open/gaol/v1/add-blob", noauth),
-        ("/open/gaol/v1/get-sth", noauth),
-        ("/open/gaol/v1/get-sth-consistency", noauth),
-        ("/open/gaol/v1/get-proof-by-hash", noauth),
-        ("/open/gaol/v1/get-entries", noauth),
-        ("/open/gaol/v1/get-entry-and-proof", noauth),
-        ("/open/gaol/v1/get-roots", noauth),
+        ("/dt/v1/add-rr-chain", noauth),
+        ("/dt/v1/get-sth", noauth),
+        ("/dt/v1/get-sth-consistency", noauth),
+        ("/dt/v1/get-proof-by-hash", noauth),
+        ("/dt/v1/get-entries", noauth),
+        ("/dt/v1/get-entry-and-proof", noauth),
+        ("/dt/v1/get-roots", noauth),
     ]
 
 def allowed_clients_signing(frontendnodenames, primarymergenode):
@@ -210,7 +210,8 @@ def gen_config(nodename, config, localconfig):
     plopconfig = []
 
     if nodetype & set(["frontendnodes", "mergenodes"]):
-        catlfishconfig.append((Symbol("known_roots_path"), localconfig["paths"]["knownroots"]))
+        catlfishconfig.append((Symbol("trust_anchors_file"),
+                               localconfig["paths"]["trust_anchors_file"]))
     if "frontendnodes" in nodetype:
         if "sctcaching" in options:
             catlfishconfig.append((Symbol("sctcache_root_path"), paths["db"] + "sctcache/"))