except:\r
pass\r
\r
-from sfa.util.faults import *\r
+from xml.parsers.expat import ExpatError\r
+\r
+from sfa.util.faults import CredentialNotVerifiable, ChildRightsNotSubsetOfParent\r
from sfa.util.sfalogging import logger\r
from sfa.util.sfatime import utcparse\r
-from sfa.trust.certificate import Keypair\r
from sfa.trust.credential_legacy import CredentialLegacy\r
from sfa.trust.rights import Right, Rights, determine_rights\r
from sfa.trust.gid import GID\r
from sfa.util.xrn import urn_to_hrn, hrn_authfor_hrn\r
\r
# 2 weeks, in seconds \r
-DEFAULT_CREDENTIAL_LIFETIME = 86400 * 14\r
+DEFAULT_CREDENTIAL_LIFETIME = 86400 * 31\r
\r
\r
# TODO:\r
self.decode()\r
return self.gidObject.get_printable_subject()\r
\r
+ # sounds like this should be __repr__ instead ??\r
def get_summary_tostring(self):\r
if not self.gidObject:\r
self.decode()\r
if not self.gidObject:\r
self.decode()\r
return self.gidObject\r
-\r
-\r
\r
##\r
# Expiration: an absolute UTC time of expiration (as either an int or string or datetime)\r
if isinstance(privs, str):\r
self.privileges = Rights(string = privs)\r
else:\r
- self.privileges = privs\r
- \r
+ self.privileges = privs \r
\r
##\r
# return the privileges as a Rights object\r