Changeset 2590
- Timestamp:
- Dec 7, 2009, 9:33:43 PM (15 years ago)
- Location:
- trunk/packages
- Files:
-
- 8 edited
Legend:
- Unmodified
- Added
- Removed
-
trunk/packages/invirt-base/python/invirt/authz/locker.py
r2572 r2590 59 59 or a group) in the home cell (athena.mit.edu for XVM). 60 60 """ 61 cell = config.authz. cells[0].cell61 cell = config.authz.afs.cells[0].cell 62 62 auth = _authenticate(cell) 63 63 return _expandGroup(name, cell=cell, auth=auth) … … 85 85 cells distantly related to the machine's home realm. 86 86 """ 87 for c in config.authz. cells:87 for c in config.authz.afs.cells: 88 88 if c.cell == cell and not c.auth: 89 89 return False -
trunk/packages/invirt-database/python/database/validate.py
r2557 r2590 241 241 admin = 'system:' + admin 242 242 try: 243 if user in getafsgroups.getAfsGroupMembers(admin, config.authz. cells[0].cell):243 if user in getafsgroups.getAfsGroupMembers(admin, config.authz.afs.cells[0].cell): 244 244 return admin 245 245 except getafsgroups.AfsProcessError, e: -
trunk/packages/invirt-web/code/cache_acls.py
r2557 r2590 40 40 return [] 41 41 try: 42 return getafsgroups.getAfsGroupMembers(name, config.authz. cells[0].cell)42 return getafsgroups.getAfsGroupMembers(name, config.authz.afs.cells[0].cell) 43 43 except getafsgroups.AfsProcessError: 44 44 return [] -
trunk/packages/invirt-web/code/getafsgroups.py
r2557 r2590 31 31 def getAfsGroupMembers(group, cell): 32 32 encrypt = True 33 for c in config.authz. cells:33 for c in config.authz.afs.cells: 34 34 if c.cell == cell and hasattr(c, 'auth'): 35 35 encrypt = c.auth -
trunk/packages/invirt-web/code/validation.py
r2557 r2590 223 223 admin = 'system:' + admin 224 224 try: 225 if user in getafsgroups.getAfsGroupMembers(admin, config.authz. cells[0].cell):225 if user in getafsgroups.getAfsGroupMembers(admin, config.authz.afs.cells[0].cell): 226 226 return admin 227 227 except getafsgroups.AfsProcessError, e: -
trunk/packages/invirt-web/invirt-cache-acls
r2557 r2590 1 1 #!/bin/sh 2 2 cells () { 3 for i in $(invirt-getconf -l authz. cells); do4 invirt-getconf authz. cells.$i.cell3 for i in $(invirt-getconf -l authz.afs.cells); do 4 invirt-getconf authz.afs.cells.$i.cell 5 5 done 6 6 } -
trunk/packages/xvm-devconfig/master.yaml
r2574 r2590 7 7 authz: 8 8 mech: invirt.authz.locker 9 cells: 10 - cell: athena.mit.edu 11 auth: no 12 - cell: sipb.mit.edu 13 auth: yes 14 - cell: zone.mit.edu 15 auth: no 16 - cell: ops.mit.edu 17 auth: no 18 - cell: net.mit.edu 19 auth: no 20 - cell: dev.mit.edu 21 auth: no 9 afs: 10 cells: 11 - cell: athena.mit.edu 12 auth: no 13 - cell: sipb.mit.edu 14 auth: yes 15 - cell: zone.mit.edu 16 auth: no 17 - cell: ops.mit.edu 18 auth: no 19 - cell: net.mit.edu 20 auth: no 21 - cell: dev.mit.edu 22 auth: no 22 23 23 24 hosts: # hosts on which VMs run -
trunk/packages/xvm-prodconfig/master.yaml
r2574 r2590 8 8 authz: 9 9 mech: invirt.authz.locker 10 cells: 11 - cell: athena.mit.edu 12 auth: yes 13 - cell: sipb.mit.edu 14 auth: yes 15 - cell: zone.mit.edu 16 auth: yes 17 - cell: ops.mit.edu 18 auth: no 19 - cell: net.mit.edu 20 auth: no 21 - cell: dev.mit.edu 22 auth: no 10 afs: 11 cells: 12 - cell: athena.mit.edu 13 auth: yes 14 - cell: sipb.mit.edu 15 auth: yes 16 - cell: zone.mit.edu 17 auth: yes 18 - cell: ops.mit.edu 19 auth: no 20 - cell: net.mit.edu 21 auth: no 22 - cell: dev.mit.edu 23 auth: no 23 24 24 25 console:
Note: See TracChangeset
for help on using the changeset viewer.