git://git.onelab.eu
/
sfa.git
/ blobdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
raw
|
inline
| side by side
declare speaks_for_gid
[sfa.git]
/
sfa
/
trust
/
auth.py
diff --git
a/sfa/trust/auth.py
b/sfa/trust/auth.py
index
1ffcbe9
..
65ce3fc
100644
(file)
--- a/
sfa/trust/auth.py
+++ b/
sfa/trust/auth.py
@@
-69,6
+69,11
@@
class Auth:
if not hrns: hrns = [None]
error=[None,None]
if not hrns: hrns = [None]
error=[None,None]
+ # if speaks for gid matches caller cert then we've found a valid
+ # speaks for credential
+ speaks_for_gid = determine_speaks_for(logger, creds, self.peer_cert, \
+ options, self.trusted_cert_list)
+
if self.peer_cert and \
not self.peer_cert.is_pubkey(speaks_for_gid.get_pubkey()):
valid = creds
if self.peer_cert and \
not self.peer_cert.is_pubkey(speaks_for_gid.get_pubkey()):
valid = creds