git://git.onelab.eu / sfa.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
paramater checking for src_cred, and allow src_cred to be none when getting rights...
[sfa.git] / geni / util / auth.py
diff --git a/geni/util/auth.py b/geni/util/auth.py
index 6ec5dac..a5ef6c1 100644 (file)
--- a/geni/util/auth.py
+++ b/geni/util/auth.py
@@ -147,12 +147,22 @@ class Auth:
         Given a user credential and a record, determine what set of rights the
         user should have to that record.
 
+        Src_cred can be None when obtaining a user credential, but should be
+        set to a valid user credential when obtaining a slice or authority
+        credential.
+
         This is intended to replace determine_rights() and
         verify_cancreate_credential()
         """
 
         type = record.get_type()
-        cred_object_hrn = src_cred.get_gid_object().get_hrn()
+        if src_cred:
+            cred_object_hrn = src_cred.get_gid_object().get_hrn()
+        else:
+            # supplying src_cred==None is only valid when obtaining user
+            # credentials.
+            assert(type == "user")
+            cred_object_hrn = None
 
         rl = RightList()
 
sfa