/src/acl/AclManager.cc - Diff - OpenNebula - OpenNebula Development pages

Revision 1b6e38da src/acl/AclManager.cc

             resource_gid_req = AclRule::NONE_ID;
+        }
         long long resource_cid_req;
         if ( obj_perms.cid >= 0 )
+        {
             resource_cid_req = obj_perms.obj_type |
                                AclRule::CLUSTER_ID |
                                obj_perms.cid;
+        }
         else
+        {
             resource_cid_req = AclRule::NONE_ID;
+        }
         long long resource_all_req  = obj_perms.obj_type | AclRule::ALL_ID;
         long long rights_req        = op;
-...
                                       AclRule::GROUP_ID |
 x00000000FFFFFFFFLL;
         long long resource_cid_mask = obj_perms.obj_type |
                                       AclRule::CLUSTER_ID |
 x00000000FFFFFFFFLL;
         // Create a temporal rule, to log the request
         long long log_resource;
-...
+        {
             log_resource = resource_gid_req;
+        }
         else if ( obj_perms.cid >= 0 )
+        {
             log_resource = resource_cid_req;
+        }
         else
+        {
             log_resource = resource_all_req;
-...
         auth     = match_rules_wrapper(user_req,
                                        resource_oid_req,
                                        resource_gid_req,
                                        resource_cid_req,
                                        resource_all_req,
                                        rights_req,
                                        resource_oid_mask,
                                        resource_gid_mask,
                                        resource_cid_mask,
                                        tmp_rules);
         if ( auth == true )
+        {
-...
         auth     = match_rules_wrapper(user_req,
                                        resource_oid_req,
                                        resource_gid_req,
                                        resource_cid_req,
                                        resource_all_req,
                                        rights_req,
                                        resource_oid_mask,
                                        resource_gid_mask,
                                        resource_cid_mask,
                                        tmp_rules);
         if ( auth == true )
+        {
-...
         auth     = match_rules_wrapper(user_req,
                                        resource_oid_req,
                                        resource_gid_req,
                                        resource_cid_req,
                                        resource_all_req,
                                        rights_req,
                                        resource_oid_mask,
                                        resource_gid_mask,
                                        resource_cid_mask,
                                        tmp_rules);
         if ( auth == true )
+        {
-...
             long long user_req,
             long long resource_oid_req,
             long long resource_gid_req,
             long long resource_cid_req,
             long long resource_all_req,
             long long rights_req,
             long long individual_obj_type,
             long long group_obj_type,
             long long cluster_obj_type,
             multimap<long long, AclRule*> &tmp_rules)
+    {
         bool auth = false;
-...
                 user_req,
                 resource_oid_req,
                 resource_gid_req,
                 resource_cid_req,
                 resource_all_req,
                 rights_req,
                 individual_obj_type,
                 group_obj_type,
                 cluster_obj_type,
                 tmp_rules);
         if ( auth == true )
-...
                 user_req,
                 resource_oid_req,
                 resource_gid_req,
                 resource_cid_req,
                 resource_all_req,
                 rights_req,
                 individual_obj_type,
                 group_obj_type,
                 cluster_obj_type,
                 acl_rules);
         unlock();
-...
             long long user_req,
             long long resource_oid_req,
             long long resource_gid_req,
             long long resource_cid_req,
             long long resource_all_req,
             long long rights_req,
             long long resource_oid_mask,
             long long resource_gid_mask,
             long long resource_cid_mask,
             multimap<long long, AclRule*> &rules)
+    {
-...
                 ||
                 // Or rule's object type and individual object ID match
                 ( ( it->second->resource & resource_oid_mask ) == resource_oid_req )
                 ||
                 // Or rule's object type and cluster object ID match
                 ( ( it->second->resource & resource_cid_mask ) == resource_cid_req )
               );
             if ( auth == true )

Also available in: Unified diff