X-Git-Url: http://git.onelab.eu/?a=blobdiff_plain;f=sfa%2Fmethods%2FGetSelfCredential.py;h=4022008988fbf2f7b62b71ecaa35f5bcdd350645;hb=108f6d000af6517d3b22501255b377a83568b946;hp=fd87ca03f5aaa10f8cc98e61579b6f4a157e5fd0;hpb=cf630d87d633f3861e3ac8a50433fa29ca46a74e;p=sfa.git diff --git a/sfa/methods/GetSelfCredential.py b/sfa/methods/GetSelfCredential.py index fd87ca03..40220089 100644 --- a/sfa/methods/GetSelfCredential.py +++ b/sfa/methods/GetSelfCredential.py @@ -6,7 +6,6 @@ from sfa.util.method import Method from sfa.trust.certificate import Certificate from sfa.storage.parameter import Parameter, Mixed -from sfa.storage.record import SfaRecord class GetSelfCredential(Method): """ @@ -55,12 +54,24 @@ class GetSelfCredential(Method): self.api.logger.info("interface: %s\tcaller-hrn: %s\ttarget-hrn: %s\tmethod-name: %s"%(self.api.interface, origin_hrn, hrn, self.name)) - # authenticate the gid + ### authenticate the gid + # import here so we can load this module at build-time for sfa2wsdl + #from sfa.storage.alchemy import dbsession + from sfa.storage.persistentobjs import RegRecord + + # xxx-local - the current code runs Resolve, which would forward to + # another registry if needed + # I wonder if this is truly the intention, or shouldn't we instead + # only look in the local db ? records = self.api.manager.Resolve(self.api, xrn, type) if not records: raise RecordNotFound(hrn) - record = SfaRecord(dict=records[0]) - gid = record.get_gid_object() + + record_obj = RegRecord (dict=records[0]) + # xxx-local the local-only version would read + #record_obj = dbsession.query(RegRecord).filter_by(hrn=hrn).first() + #if not record_obj: raise RecordNotFound(hrn) + gid = record_obj.get_gid_object() gid_str = gid.save_to_string(save_parents=True) self.api.auth.authenticateGid(gid_str, [cert, type, hrn]) # authenticate the certificate against the gid in the db