X-Git-Url: http://git.onelab.eu/?a=blobdiff_plain;f=sfa%2Fmethods%2Fget_ticket.py;h=62861e9b23a9be081238e1d642776f359cecf756;hb=23e5745a8d7871776aa846ac7ef5c6bde0b0f9f3;hp=293734f48299006890db402dac0f7d9ccf8be211;hpb=471535b34ad3dc39ee7f029d1662a3ad9fb63ebc;p=sfa.git

diff --git a/sfa/methods/get_ticket.py b/sfa/methods/get_ticket.py
index 293734f4..62861e9b 100644
--- a/sfa/methods/get_ticket.py
+++ b/sfa/methods/get_ticket.py
@@ -11,6 +11,7 @@ from sfa.util.genitable import GeniTable
 from sfa.util.sfaticket import SfaTicket
 from sfa.plc.slices import Slices
 from sfatables.runtime import SFATablesRules
+from sfa.util.rspec import *
 
 class get_ticket(Method):
     """
@@ -29,7 +30,7 @@ class get_ticket(Method):
     @return the string representation of a ticket object
     """
 
-    interfaces = ['registry', 'aggregate', 'slicemgr']
+    interfaces = ['aggregate', 'slicemgr']
     
     accepts = [
         Parameter(str, "Credential string"),
@@ -41,61 +42,45 @@ class get_ticket(Method):
 
     returns = Parameter(str, "String represeneation of a ticket object")
     
-    def call(self, cred, hrn, rspec, request_hash=None):
+    def call(self, cred, hrn, rspec, request_hash=None, origin_hrn=None):
         self.api.auth.authenticateCred(cred, [cred, hrn, rspec], request_hash)
         self.api.auth.check(cred, "getticket")
-        self.api.auth.verify_object_belongs_to_me(hrn)
-        self.api.auth.verify_object_permission(hrn)
+	
+	if origin_hrn==None:
+	    origin_hrn=Credential(string=cred).get_gid_caller().get_hrn()
 
-        # find record info
-        table = GeniTable()
-        records = table.findObjects({'hrn': hrn, 'type': 'slice', 'peer_authority': None})
-        if not records:
-            raise RecordNotFound(hrn)
-        record = records[0]
-        auth_hrn = record['authority']
-        auth_info = self.api.auth.get_auth_info(auth_hrn)
-        object_gid = record.get_gid_object()
-        new_ticket = SfaTicket(subject = object_gid.get_subject())
-        new_ticket.set_gid_caller(self.api.auth.client_gid)
-        new_ticket.set_gid_object(object_gid)
-        new_ticket.set_issuer(key=auth_info.get_pkey_object(), subject=auth_hrn)
-        new_ticket.set_pubkey(object_gid.get_pubkey())
+	#log the call
+        self.api.logger.info("interface: %s\tcaller-hrn: %s\ttarget-hrn: %s\tmethod-name: %s"%(self.api.interface, origin_hrn, hrn, self.name))
+   
+        # set the right outgoing rules
+        manager_base = 'sfa.managers'
+        if self.api.interface in ['aggregate']:
+            outgoing_rules = SFATablesRules('OUTGOING')
+            mgr_type = self.api.config.SFA_AGGREGATE_TYPE
+            manager_module = manager_base + ".aggregate_manager_%s" % mgr_type
+            manager = __import__(manager_module, fromlist=[manager_base])
+        elif self.api.interface in ['slicemgr']:
+            outgoing_rules = SFATablesRules('FORWARD-OUTGOING')
+            mgr_type = self.api.config.SFA_SM_TYPE
+            manager_module = manager_base + ".slice_manager_%s" % mgr_type
+            manager = __import__(manager_module, fromlist=[manager_base])
 
-        # determine aggregate tyep 
-        sfa_aggregate_type = Config().get_aggregate_rspec_type()
-        rspec_manager = __import__("sfa.rspecs.aggregates.rspec_manager_"+sfa_aggregate_type, fromlist = ["sfa.rspecs.aggregates"])
-
-        # Fukter the incoming rspec using sfatables
+        # Filter the incoming rspec using sfatables
         incoming_rules = SFATablesRules('INCOMING')
         #incoming_rules.set_slice(hrn) # This is a temporary kludge. Eventually, we'd like to fetch the context requested by the match/target
         contexts = incoming_rules.contexts
         caller_hrn = Credential(string=cred).get_gid_caller().get_hrn()
-        request_context = rspec_manager.fetch_context(hrn, caller_hrn, contexts)
+        request_context = manager.fetch_context(hrn, caller_hrn, contexts)
         incoming_rules.set_context(request_context)
         rspec = incoming_rules.apply(rspec)
-
-        # get sliver info    
-        slivers = Slices(self.api).get_slivers(hrn)
-        if not slivers:
-            raise SliverDoesNotExist(hrn)
-        sliver = slivers[0]
-            
-        # get initscripts
-        initscripts = None
-        data = {
-            'timestamp': int(time.time()),
-            'initscripts': initscripts,
-            'slivers': sliver 
-        }
-
-        new_ticket.set_attributes(attributes)
-        new_ticket.set_rspec(rspec)
-
-        new_ticket.set_parent(self.api.auth.hierarchy.get_auth_ticket(auth_hrn))
-
-        new_ticket.encode()
-        new_ticket.sign()
-
-        return new_ticket.save_to_string(save_parents=True)
+        # remove nodes that are not available at this interface from the rspec
+        valid_rspec = RSpec(xml=manager.get_rspec(self.api, None, origin_hrn))
+        valid_nodes = valid_rspec.getDictsByTagName('NodeSpec')
+        valid_hostnames = [node['name'] for node in valid_nodes]
+        rspec_object = RSpec(xml=rspec)
+        rspec_object.filter(tagname='NodeSpec', attribute='name', whitelist=valid_hostnames)
+        rspec = rspec_object.toxml() 
+        ticket = manager.get_ticket(self.api, hrn, rspec, origin_hrn)
+        
+        return ticket