#
-# GeniAPI authentication
+# SfaAPI authentication
#
### $Id$
### $URL$
from sfa.util.faults import *
from sfa.trust.hierarchy import Hierarchy
from sfa.util.config import *
-from sfa.util.misc import *
+from sfa.util.namespace import *
from sfa.trust.gid import GID
from sfa.util.sfaticket import *
caller_gid = cred.get_gid_caller()
caller_hrn = caller_gid.get_hrn()
if caller_hrn != self.config.SFA_INTERFACE_HRN:
- raise GeniPermissionError(self.config.SFA_INTEFACE_HRN)
+ raise SfaPermissionDenied(self.config.SFA_INTEFACE_HRN)
return
if type=="slice":
researchers = record.get("researcher", [])
- if (caller_hrn in researchers):
+ pis = record.get("PI", [])
+ if (caller_hrn in researchers + pis):
rl.add("refresh")
rl.add("embed")
rl.add("bind")