Skip to content
Snippets Groups Projects
Commit 134245e3 authored by Kevin S. Hahn's avatar Kevin S. Hahn
Browse files

treats authd drone request as non-public superuser

parent 2abea8b4
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
Showing
with 7 additions and 3 deletions
base.py
+ 7
3
View file @ 134245e3
......@@ -53,12 +53,16 @@ class RequestHandler(webapp2.RequestHandler):
if not self.app.db.sites.find_one({'_id': remote_instance}):
self.abort(402, remote_instance + ' is not an authorized remote instance')
else:
if not self.app.db.drones.find_one({'_id': remote_instance}):
self.abort(402, remote_instance + ' is not an authorized drone')
drone_type, drone_id = self.request.user_agent.replace('SciTran', '').strip().split()
if not self.app.db.drones.find_one({'_id': drone_id}):
self.abort(402, drone_id + ' is not an authorized drone')
self.drone_request = True
self.public_request = not bool(self.uid)
log.debug('public request: %s' % str(self.public_request))
if self.public_request or self.source_site:
if self.drone_request and not self.source_site: # engine request
self.public_request = False
self.superuser_request = True
elif self.public_request or self.source_site:
self.superuser_request = False
else:
user = self.app.db.users.find_one({'_id': self.uid}, ['root', 'wheel'])
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment