from sfa.trust.credential import *
from sfa.trust.rights import *
from sfa.util.faults import *
+from sfa.util.namespace import *
from sfa.util.method import Method
from sfa.util.parameter import Parameter, Mixed
from sfa.util.record import SfaRecord
Retrive a credential for an object
@param cert certificate string
@param type type of object (user | slice | sa | ma | node)
- @param hrn human readable name of object
+ @param hrn human readable name of object (hrn or urn)
@return the string representation of a credential object
"""
accepts = [
Parameter(str, "certificate"),
- Parameter(str, "Human readable name (hrn)"),
+ Parameter(str, "Human readable name (hrn or urn)"),
Mixed(Parameter(str, "Request hash"),
Parameter(None, "Request hash not specified"))
]
returns = Parameter(str, "String representation of a credential object")
- def call(self, cert, type, hrn, request_hash=None):
+ def call(self, cert, type, xrn, request_hash=None):
"""
get_self_credential a degenerate version of get_credential used by a client
to get his initial credential when de doesnt have one. This is the same as
@param hrn human readable name of authority to list
@return string representation of a credential object
"""
+ if type:
+ hrn = urn_to_hrn(xrn)[0]
+ else:
+ hrn, type = urn_to_hrn(xrn)
self.api.auth.verify_object_belongs_to_me(hrn)
# send the call to the right manager
manager = __import__(manager_module, fromlist=[manager_base])
# authenticate the gid
- records = manager.resolve(self.api, hrn, type)
+ records = manager.resolve(self.api, xrn, type)
if not records:
raise RecordNotFound(hrn)
record = SfaRecord(dict=records[0])
if not certificate.is_pubkey(gid.get_pubkey()):
raise ConnectionKeyGIDMismatch(gid.get_subject())
- return manager.get_credential(self.api, hrn, type, is_self=True)
+ return manager.get_credential(self.api, xrn, type, is_self=True)