diff options
author | Fraser Tweedale <ftweedal@redhat.com> | 2015-04-30 04:55:29 -0400 |
---|---|---|
committer | Jan Cholasta <jcholast@redhat.com> | 2015-06-04 08:27:33 +0000 |
commit | 300b74fc7fb2a5ce540b2d21189794a5b2db88b1 (patch) | |
tree | cfa27d8e5ce6eec66e0c47e38ab6813fef6f6d43 /install/updates | |
parent | 35af0d6d66e623012755acca44bd77186067d156 (diff) | |
download | freeipa-300b74fc7fb2a5ce540b2d21189794a5b2db88b1.tar.gz freeipa-300b74fc7fb2a5ce540b2d21189794a5b2db88b1.tar.xz freeipa-300b74fc7fb2a5ce540b2d21189794a5b2db88b1.zip |
Add certprofile plugin
Add the 'certprofile' plugin which defines the commands for managing
certificate profiles and associated permissions.
Also update Dogtag network code in 'ipapython.dogtag' to support
headers and arbitrary request bodies, to facilitate use of the
Dogtag profiles REST API.
Part of: https://fedorahosted.org/freeipa/ticket/57
Reviewed-By: Martin Basti <mbasti@redhat.com>
Diffstat (limited to 'install/updates')
-rw-r--r-- | install/updates/40-certprofile.update | 9 | ||||
-rw-r--r-- | install/updates/40-delegation.update | 8 | ||||
-rw-r--r-- | install/updates/Makefile.am | 1 |
3 files changed, 18 insertions, 0 deletions
diff --git a/install/updates/40-certprofile.update b/install/updates/40-certprofile.update new file mode 100644 index 000000000..6b0a81d0f --- /dev/null +++ b/install/updates/40-certprofile.update @@ -0,0 +1,9 @@ +dn: cn=ca,$SUFFIX +default: objectClass: nsContainer +default: objectClass: top +default: cn: ca + +dn: cn=certprofiles,cn=ca,$SUFFIX +default: objectClass: nsContainer +default: objectClass: top +default: cn: certprofiles diff --git a/install/updates/40-delegation.update b/install/updates/40-delegation.update index 975929bd7..bc0736c5b 100644 --- a/install/updates/40-delegation.update +++ b/install/updates/40-delegation.update @@ -237,3 +237,11 @@ default:ipapermissiontype: SYSTEM dn: cn=config add:aci: (version 3.0;acl "permission:Add Configuration Sub-Entries";allow (add) groupdn = "ldap:///cn=Add Configuration Sub-Entries,cn=permissions,cn=pbac,$SUFFIX";) + +# CA Administrators +dn: cn=CA Administrator,cn=privileges,cn=pbac,$SUFFIX +default:objectClass: nestedgroup +default:objectClass: groupofnames +default:objectClass: top +default:cn: CA Administrator +default:description: CA Administrator diff --git a/install/updates/Makefile.am b/install/updates/Makefile.am index 4e2da05d6..fc6bd624e 100644 --- a/install/updates/Makefile.am +++ b/install/updates/Makefile.am @@ -32,6 +32,7 @@ app_DATA = \ 40-replication.update \ 40-dns.update \ 40-automember.update \ + 40-certprofile.update \ 40-otp.update \ 40-vault.update \ 45-roles.update \ |