From d9a95db9a2f6172e026acb20f440e0a02363143a Mon Sep 17 00:00:00 2001
From: Anil-Kumar Vengalil <Anil-Kumar.Vengalil@sophia.inria.fr>
Date: Wed, 23 Sep 2009 15:21:44 +0000
Subject: [PATCH] these two lines, if enabled, allow a credential to operate on
 all target hrn. tony may pls. review this

---
 sfa/trust/auth.py | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/sfa/trust/auth.py b/sfa/trust/auth.py
index 923bed4b..298d0329 100644
--- a/sfa/trust/auth.py
+++ b/sfa/trust/auth.py
@@ -123,8 +123,8 @@ class Auth:
             return
         if name.startswith(object_hrn + "."):
             return
-        if name.startswith(get_authority(name)):
-            return
+        #if name.startswith(get_authority(name)):
+            #return
     
         raise PermissionError(name)
 
-- 
2.47.0