From 5801e9c53ec2d236222851dcc06199ba7bdc6b93 Mon Sep 17 00:00:00 2001
From: "Ruben S. Montero" <rubensm@dacya.ucm.es>
Date: Tue, 5 Jul 2011 16:54:08 +0200
Subject: [PATCH] feature #687: The scheduler cheks user authorization for the
 host. Log messages for filtered hosts

---
 src/scheduler/src/sched/Scheduler.cc | 39 ++++++++++++++++++++++------
 1 file changed, 31 insertions(+), 8 deletions(-)

diff --git a/src/scheduler/src/sched/Scheduler.cc b/src/scheduler/src/sched/Scheduler.cc
index b3e141fe44..98ef72f776 100644
--- a/src/scheduler/src/sched/Scheduler.cc
+++ b/src/scheduler/src/sched/Scheduler.cc
@@ -330,11 +330,17 @@ void Scheduler::match()
             
             if ( matched == false )
             {
+                ostringstream oss;
+
+                oss << "Host " << host->get_hid() << 
+                    " filtered out. It does not fullfil REQUIREMENTS.";
+
+                NebulaLog::log("SCHED",Log::DEBUG,oss);
                 continue;
             }
             
             // -----------------------------------------------------------------
-            // Check host capacity
+            // Check if user is authorized
             // -----------------------------------------------------------------
 
             user    = upool->get(uid);
@@ -342,21 +348,28 @@ void Scheduler::match()
 
             if ( user != 0 )
             {
-               set<int> groups = user->get_groups(); 
-               //TODO Authorization test for this user on this host   
-               //  1.- user = uid
-               //  2.- gid
-               //  3.- groups
-               //  4.- DEPLOY on host->get_hid
+                set<int> groups = user->get_groups(); 
+
+                matched = acls->authorize(uid, 
+                                          groups,
+                                          AuthRequest::HOST, 
+                                          host->get_hid(), 
+                                          -1,
+                                          AuthRequest::USE); 
             }
             else
             {
-                //TODO Log debug info (user not authorized)?
                 continue;
             }
 
             if ( matched == false )
             {
+                ostringstream oss;
+
+                oss << "Host " << host->get_hid() << 
+                    " filtered out. User is not authorized to use it.";
+
+                NebulaLog::log("SCHED",Log::DEBUG,oss);
                 continue;
             }
             // -----------------------------------------------------------------
@@ -374,6 +387,16 @@ void Scheduler::match()
                 	vm->add_host(host->get_hid());
                 }
             }
+            else
+            {
+                ostringstream oss;
+
+                oss << "Host " << host->get_hid() << 
+                    " filtered out. It does not have enough capacity.";
+
+                NebulaLog::log("SCHED",Log::DEBUG,oss);
+                
+            }
         }
     }
 }