- def call(self, cred, record, origin_hrn=None):
- user_cred = Credential(string=cred)
+ def call(self, record, creds):
+ # validate cred
+ valid_creds = self.api.auth.checkCredentials(creds, 'register')
+
+ # verify permissions
+ hrn = record.get('hrn', '')
+ self.api.auth.verify_object_permission(hrn)