From 8eff9bca139d66f86391362a28abdc07966817a3 Mon Sep 17 00:00:00 2001
From: Michael DeHaan <mdehaan@redhat.com>
Date: Wed, 2 Apr 2008 15:21:38 -0400
Subject: Implementated authorization logic around shared kickstart templates.

---
 cobbler/remote.py | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

(limited to 'cobbler/remote.py')

diff --git a/cobbler/remote.py b/cobbler/remote.py
index 5e3fb83..ebb01f7 100644
--- a/cobbler/remote.py
+++ b/cobbler/remote.py
@@ -1050,7 +1050,10 @@ class CobblerReadWriteXMLRPCInterface(CobblerXMLRPCInterface):
         """
 
         self.log("read_or_write_kickstart_template",name=kickstart_file,token=token)
-        self.check_access(token,"read_or_write_kickstart_templates",kickstart_file,is_read)
+        if is_read:
+            self.check_access(token,"read_kickstart",kickstart_file)
+        else:
+            self.check_access(token,"modify_kickstart",kickstart_file)
  
         if kickstart_file.find("..") != -1 or not kickstart_file.startswith("/"):
             raise CX(_("tainted file location"))
-- 
cgit