from sfa.trust.rights import RightList
from sfa.util.faults import *
from sfa.trust.hierarchy import Hierarchy
-from sfa.util.genitable import GeniTable
from sfa.util.config import *
from sfa.util.misc import *
from sfa.trust.gid import GID
self.client_gid.verify_chain(self.trusted_cert_list)
if self.object_gid:
self.object_gid.verify_chain(self.trusted_cert_list)
+ else:
+ raise MissingTrustedRoots(self.config.get_trustedroots_dir())
return True
rl.add("info")
elif type == "authority":
- pis = record.get("pi", [])
+ pis = record.get("PI", [])
operators = record.get("operator", [])
- if (caller_hrn == config.SFA_INTERFACE_HRN):
- rl.add("authority")
+ if (caller_hrn == self.config.SFA_INTERFACE_HRN):
+ rl.add("authority,sa,ma",)
if (caller_hrn in pis):
rl.add("authority,sa")
if (caller_hrn in operators):
rl.add("resolve")
rl.add("info")
+ elif type == "component":
+ r1.add("operator")
+
return rl
def verify_cancreate_credential(self, src_cred, record):