From 168aa5f9d31f310caa2d8fb87b5d46d6e23b5821 Mon Sep 17 00:00:00 2001
From: Matt Schwager <schwag09@gmail.com>
Date: Wed, 17 Oct 2012 13:44:43 -0400
Subject: IP based ACLs working for CherryPy and Builtin Server. Rudimentary
 tests performed and passed.

---
 src/lib/Bcfg2/Server/Core.py | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

(limited to 'src/lib/Bcfg2/Server/Core.py')

diff --git a/src/lib/Bcfg2/Server/Core.py b/src/lib/Bcfg2/Server/Core.py
index 9ca540127..e931a7bc0 100644
--- a/src/lib/Bcfg2/Server/Core.py
+++ b/src/lib/Bcfg2/Server/Core.py
@@ -1075,8 +1075,10 @@ class BaseCore(object):
     def check_acls(self, client):
         """ Check if client IP is in list of accepted IPs """
         try:
-            return client in self.plugins['Acl'].config.ips
+            return (client in self.plugins['Acl'].config.ips or
+					'*' in self.plugins['Acl'].config)
         except KeyError:
+            # No ACL means accept all incoming ips (wildcard)
             return True
 
     @exposed
-- 
cgit v1.2.3-1-g7c22