make authority, sa, and ma rights explicit

author Larry Peterson <llp@cs.princeton.edu>

Tue, 10 Feb 2009 19:07:12 +0000 (19:07 +0000)

committer Larry Peterson <llp@cs.princeton.edu>

Tue, 10 Feb 2009 19:07:12 +0000 (19:07 +0000)
author Larry Peterson <llp@cs.princeton.edu>
Tue, 10 Feb 2009 19:07:12 +0000 (19:07 +0000)
committer Larry Peterson <llp@cs.princeton.edu>
Tue, 10 Feb 2009 19:07:12 +0000 (19:07 +0000)
diff --git a/geni/util/rights.py b/geni/util/rights.py

index 3265232..1e6a8a3 100644 (file)
--- a/geni/util/rights.py
+++ b/geni/util/rights.py
@@ -14,15 +14,15 @@
  # privilege_table is a list of priviliges and what operations are allowed
  # per privilege.
  
-privilege_table = {"authority": ["*"],
+privilege_table = {"authority": ["remove", "update", "resolve", "list", "getcredential"],
                     "refresh": ["remove", "update"],
                     "resolve": ["resolve", "list", "getcredential"],
-                   "sa": ["*"],
+                   "sa": ["getticket", "redeemslice", "createslice", "deleteslice", "updateslice", "getsliceresources", "getticket", "loanresources", "stopslice", "startslice", "deleteslice", "resetslice", "listslices", "listnodes", "getpolicy"],
                     "embed": ["getticket", "redeemslice", "createslice", "deleteslice", "updateslice", "getsliceresources"],
                     "bind": ["getticket", "loanresources"],
                     "control": ["updateslice", "createslice", "stopslice", "startslice", "deleteslice", "resetslice", "getsliceresources"],
                     "info": ["listslices", "listnodes", "getpolicy"],
-                   "ma": ["*"]}
+                   "ma": ["setbootstate", "getbootstate", "reboot"]}
  
  ##
  # The Right class represents a single privilege.
author	Larry Peterson <llp@cs.princeton.edu>
	Tue, 10 Feb 2009 19:07:12 +0000 (19:07 +0000)
committer	Larry Peterson <llp@cs.princeton.edu>
	Tue, 10 Feb 2009 19:07:12 +0000 (19:07 +0000)