kbs/config: Add example config for keylime AS

Create an example config file to show how one could configure the KBS to
use Keylime as an alternative attestation service.

Signed-off-by: Tyler Fanelli <[email protected]>

Author: tylerfanelli

kbs/config/kbs-config-keylime-as.toml

@@ -0,0 +1,23 @@
+[http_server]
+insecure_http = true
+
+[attestation_token]
+trusted_cert_paths = ["/var/lib/keylime/cv_ca/server-cert.crt"]
+insecure_key = true
+
+[attestation_service]
+type = "keylime-tee"
+base_url = "https://0.0.0.0:8881"
+api_version_major = 2
+api_version_minor = 4
+developer_name = "test"
+build_name = "test"
+cv_ca_path = "/var/lib/keylime/cv_ca"
+
+[[plugins]]
+name = "resource"
+type = "LocalFs"
+dir_path = "/opt/confidential-containers/kbs/repository"
+
+[admin]
+insecure_api = true