From 72052adb3a93c1e9649f9db09cda26ea64eac700 Mon Sep 17 00:00:00 2001
From: =?utf8?q?Franti=C5=A1ek=20Dvo=C5=99=C3=A1k?= <valtri@civ.zcu.cz>
Date: Mon, 30 Apr 2012 10:13:20 +0000
Subject: [PATCH] Enable job status query over socket (fixes the proxy purge,
 second part of the SB #88630).

---
 org.glite.lb.server/src/lb_authz.c | 9 +++++----
 1 file changed, 5 insertions(+), 4 deletions(-)

diff --git a/org.glite.lb.server/src/lb_authz.c b/org.glite.lb.server/src/lb_authz.c
index 02e3b7e..dd85425 100644
--- a/org.glite.lb.server/src/lb_authz.c
+++ b/org.glite.lb.server/src/lb_authz.c
@@ -1219,12 +1219,14 @@ check_jobstat_authz(edg_wll_Context ctx,
 	    	    int *authz_flags)
 {
     *authz_flags = 0;
+    if (job_flags & EDG_WLL_NOTIF_ANONYMIZE) *authz_flags |= READ_ANONYMIZED;
+
+    if (ctx->noAuth)
+	return 1;
 
     if (peer == NULL || peer->name == NULL)
 	return 0;
 
-    if (job_flags & EDG_WLL_NOTIF_ANONYMIZE) *authz_flags |= READ_ANONYMIZED;
-
     if (edg_wll_gss_equal_subj(peer->name, stat->owner))
 	return 1;
     if (stat->payload_owner && edg_wll_gss_equal_subj(peer->name, stat->payload_owner))
@@ -1233,8 +1235,7 @@ check_jobstat_authz(edg_wll_Context ctx,
     if ((!(*authz_flags & READ_ANONYMIZED)) && (check_authz_policy(&ctx->authz_policy, peer, READ_ANONYMIZED)))
 	*authz_flags |= READ_ANONYMIZED;
 
-    if (ctx->noAuth ||
-	edg_wll_amIroot(peer->name, peer->fqans, &ctx->authz_policy))
+    if (edg_wll_amIroot(peer->name, peer->fqans, &ctx->authz_policy))
 	return 1;
     if (acl && edg_wll_CheckACL_princ(ctx, acl, EDG_WLL_CHANGEACL_READ, peer) == 0)
 	return 1;
-- 
1.8.2.3