- def call(self, cred, type, hrn, request_hash=None, origin_hrn=None):
- # This cred will be an authority cred, not a user, so we cant use it to
- # authenticate the caller's request_hash. Let just get the caller's gid
- # from the cred and authenticate using that
- client_gid = Credential(string=cred).get_gid_caller()
- client_gid_str = client_gid.save_to_string(save_parents=True)
- self.api.auth.authenticateGid(client_gid_str, [cred, type, hrn], request_hash)
- self.api.auth.check(cred, "remove")
- self.api.auth.verify_object_permission(hrn)
-
- if origin_hrn==None:
- origin_hrn=Credential(string=cred).get_gid_caller().get_hrn()
+ def call(self, cred, type, hrn, origin_hrn=None):
+ user_cred = Credential(string=cred)