allow to control who can mediate ownership change

diff --git a/org.glite.lb.server/src/authz_policy.c b/org.glite.lb.server/src/authz_policy.c
index 0300899..0343cbb 100644 (file)
--- a/org.glite.lb.server/src/authz_policy.c
+++ b/org.glite.lb.server/src/authz_policy.c
@@ -33,6 +33,7 @@ struct action_name action_names[] = {
     { REGISTER_JOBS,   "REGISTER_JOBS" },      
     { READ_ALL, "READ_ALL" },
     { PURGE, "PURGE" },
+    { GRANT_OWNERSHIP, "GRANT_OWNERSHIP" },
 };
 
 static int num_actions =

diff --git a/org.glite.lb.server/src/authz_policy.h b/org.glite.lb.server/src/authz_policy.h
index c335fb3..2f93e92 100644 (file)
--- a/org.glite.lb.server/src/authz_policy.h
+++ b/org.glite.lb.server/src/authz_policy.h
@@ -33,6 +33,7 @@ typedef enum {
     REGISTER_JOBS      = 1 << 6,
     READ_ALL           = 1 << 7,
     PURGE              = 1 << 8,
+    GRANT_OWNERSHIP    = 1 << 9,
 } authz_action;
 
 typedef struct action_name {

diff --git a/org.glite.lb.server/src/lb_authz.c b/org.glite.lb.server/src/lb_authz.c
index 168d055..09a25f7 100644 (file)
--- a/org.glite.lb.server/src/lb_authz.c
+++ b/org.glite.lb.server/src/lb_authz.c
@@ -927,6 +927,10 @@ check_store_authz(edg_wll_Context ctx, edg_wll_Event *ev)
             action = REGISTER_JOBS;
             break;
 
+       case EDG_WLL_EVENT_GRANTPAYLOADOWNERSHIP:
+            action = GRANT_OWNERSHIP;
+            break;
+
        case EDG_WLL_EVENT_CURDESCR:
        case EDG_WLL_EVENT_USERTAG:
        case EDG_WLL_EVENT_CHANGEACL: