From 3f528a875f3eb69b0d39b5faaa757bdd3d05e683 Mon Sep 17 00:00:00 2001 From: Scott Baker Date: Wed, 29 Apr 2009 01:12:09 +0000 Subject: [PATCH] paramater checking for src_cred, and allow src_cred to be none when getting rights for user credentials --- geni/util/auth.py | 12 +++++++++++- 1 file changed, 11 insertions(+), 1 deletion(-) diff --git a/geni/util/auth.py b/geni/util/auth.py index 6ec5dacd..a5ef6c1c 100644 --- a/geni/util/auth.py +++ b/geni/util/auth.py @@ -147,12 +147,22 @@ class Auth: Given a user credential and a record, determine what set of rights the user should have to that record. + Src_cred can be None when obtaining a user credential, but should be + set to a valid user credential when obtaining a slice or authority + credential. + This is intended to replace determine_rights() and verify_cancreate_credential() """ type = record.get_type() - cred_object_hrn = src_cred.get_gid_object().get_hrn() + if src_cred: + cred_object_hrn = src_cred.get_gid_object().get_hrn() + else: + # supplying src_cred==None is only valid when obtaining user + # credentials. + assert(type == "user") + cred_object_hrn = None rl = RightList() -- 2.43.0