From 168aa5f9d31f310caa2d8fb87b5d46d6e23b5821 Mon Sep 17 00:00:00 2001
From: Matt Schwager <schwag09@gmail.com>
Date: Wed, 17 Oct 2012 13:44:43 -0400
Subject: IP based ACLs working for CherryPy and Builtin Server. Rudimentary
 tests performed and passed.

---
 src/lib/Bcfg2/Server/SSLServer.py | 2 ++
 1 file changed, 2 insertions(+)

(limited to 'src/lib/Bcfg2/Server/SSLServer.py')

diff --git a/src/lib/Bcfg2/Server/SSLServer.py b/src/lib/Bcfg2/Server/SSLServer.py
index eeaeb9516..c2294eec9 100644
--- a/src/lib/Bcfg2/Server/SSLServer.py
+++ b/src/lib/Bcfg2/Server/SSLServer.py
@@ -209,6 +209,8 @@ class XMLRPCRequestHandler(SimpleXMLRPCServer.SimpleXMLRPCRequestHandler):
             password = ""
         cert = self.request.getpeercert()
         client_address = self.request.getpeername()
+        if not self.server.instance.check_acls(client_address[0]):
+            return False
         return self.server.instance.authenticate(cert, username,
                                                  password, client_address)
 
-- 
cgit v1.2.3-1-g7c22