Implementated authorization logic around shared kickstart templates.

author: Michael DeHaan <mdehaan@redhat.com> 2008-04-02 15:21:38 -0400
committer: Michael DeHaan <mdehaan@redhat.com> 2008-04-02 15:21:38 -0400
commit: 8eff9bca139d66f86391362a28abdc07966817a3 (patch)
tree: 10156b731ae68d50269be50206f7c6b72d35f765 /cobbler/remote.py
parent: 2e0c028db2cb84722169524718cd75a80a3132bb (diff)
download: third_party-cobbler-8eff9bca139d66f86391362a28abdc07966817a3.tar.gz
third_party-cobbler-8eff9bca139d66f86391362a28abdc07966817a3.tar.xz
third_party-cobbler-8eff9bca139d66f86391362a28abdc07966817a3.zip
1 files changed, 4 insertions, 1 deletions
diff --git a/cobbler/remote.py b/cobbler/remote.py
index 5e3fb83..ebb01f7 100644
--- a/cobbler/remote.py
+++ b/cobbler/remote.py
@@ -1050,7 +1050,10 @@ class CobblerReadWriteXMLRPCInterface(CobblerXMLRPCInterface):
         """
 
         self.log("read_or_write_kickstart_template",name=kickstart_file,token=token)
-        self.check_access(token,"read_or_write_kickstart_templates",kickstart_file,is_read)
+        if is_read:
+            self.check_access(token,"read_kickstart",kickstart_file)
+        else:
+            self.check_access(token,"modify_kickstart",kickstart_file)
  
         if kickstart_file.find("..") != -1 or not kickstart_file.startswith("/"):
             raise CX(_("tainted file location"))
author	Michael DeHaan <mdehaan@redhat.com>	2008-04-02 15:21:38 -0400
committer	Michael DeHaan <mdehaan@redhat.com>	2008-04-02 15:21:38 -0400
commit	8eff9bca139d66f86391362a28abdc07966817a3 (patch)
tree	10156b731ae68d50269be50206f7c6b72d35f765 /cobbler/remote.py
parent	2e0c028db2cb84722169524718cd75a80a3132bb (diff)
download	third_party-cobbler-8eff9bca139d66f86391362a28abdc07966817a3.tar.gz third_party-cobbler-8eff9bca139d66f86391362a28abdc07966817a3.tar.xz third_party-cobbler-8eff9bca139d66f86391362a28abdc07966817a3.zip