### $Id$
### $URL$
+import time
from sfa.util.faults import *
from sfa.util.method import Method
from sfa.util.parameter import Parameter, Mixed
accepts = [
Parameter(str, "Credential string"),
- Parameter(dict, "Record dictionary to be updated")
+ Parameter(dict, "Record dictionary to be updated"),
+ Mixed(Parameter(str, "Request hash"),
+ Parameter(None, "Request hash not specified"))
]
returns = Parameter(int, "1 if successful")
- def call(self, cred, record_dict, caller_cred=None):
+ def call(self, cred, record_dict, request_hash=None, caller_cred=None):
+ if caller_cred==None:
+ caller_cred=cred
+
+ #log the call
+ self.api.logger.info("interface: %s\tcaller-hrn: %s\ttarget-hrn: %s\tmethod-name: %s"%(self.api.interface, Credential(string=caller_cred).get_gid_caller().get_hrn(), None, self.name))
+ # This cred might be an authority cred, not a user, so we cant use it to
+ # authenticate the caller's request_hash. Let just get the caller's gid
+ # from the cred and authenticate using that
+ client_gid = Credential(string=cred).get_gid_caller()
+ client_gid_str = client_gid.save_to_string(save_parents=True)
+ self.api.auth.authenticateGid(client_gid_str, [cred], request_hash)
self.api.auth.check(cred, "update")
- if caller_cred==None:
- caller_cred=cred
-
- #log the call
- self.api.logger.info("interface: %s\tcaller-hrn: %s\ttarget-hrn: %s\tmethod-name: %s"%(self.api.interface, Credential(string=caller_cred).get_gid_caller().get_hrn(), None, self.name))
new_record = GeniRecord(dict = record_dict)
type = new_record['type']
hrn = new_record['hrn']
if not records:
raise RecordNotFound(hrn)
record = records[0]
+ record['last_updated'] = time.gmtime()
# Update_membership needs the membership lists in the existing record
# filled in, so it can see if members were added or removed