summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* Add regular expression pattern to host names.Rob Crittenden2011-09-273-10/+13
| | | | | | Limit hostnames to letters, digits and - with a maximum length of 255 https://fedorahosted.org/freeipa/ticket/1780
* Include failed service and service groups in hbac rule managementRob Crittenden2011-09-271-0/+3
| | | | | | | | hbacrule-service-add/remove failures weren't being displayed because no label was defined. https://fedorahosted.org/freeipa/ticket/1863 https://fedorahosted.org/freeipa/ticket/1865
* Fix error messages in hbacruleMartin Kosek2011-09-271-4/+16
| | | | | | | Fix NotFound error messages in hbacrule commands so that the text is consistent with the rest of the framework. https://fedorahosted.org/freeipa/ticket/1861
* Revert "Always require SSL in the Kerberos authorization block."Martin Kosek2011-09-272-3/+2
| | | | | | | This patch broke installation of a new master. Reverting until we develop a better solution. This reverts commit f42da4357eac7e64e803b53c78d6cff9175d20a4.
* Fixed add/delete arrows position.Endi S. Dewata2011-09-261-4/+4
| | | | | | | The IPA.adder_dialog has been modified such that it shows the >> arrow first then the << arrow. Ticket #1858
* Replaced description text fields with text areas.Endi S. Dewata2011-09-268-77/+251
| | | | Ticket #1783
* Fix ipa-replica-prepare always warning the user about not using the system ↵Jan Cholasta2011-09-262-6/+16
| | | | | | hostname. ticket 1717
* Updated DNS zone details page.Endi S. Dewata2011-09-261-3/+20
| | | | | | | | The DNS zone details page has been modified to use radio buttons for active zone and dynamic update fields, and text area for BIND update policy field. Ticket #1781, #1785
* Fixed: Column header for attributes table should be full widthPetr Vobornik2011-09-262-23/+9
| | | | | | https://fedorahosted.org/freeipa/ticket/1841 The column header for the attributes table (IPA.attributes_widget) does not cover the entire width of the table. This problem appears in the adder dialog and details page for permissions, self-service permissions, and delegations.
* ipa-kdb: Fix expiration time calculationSimo Sorce2011-09-262-17/+18
| | | | | | | | | | | Expiration time should be enforced as per policy only for users and only when a password change occurs, ina ll other cases we should just let kadmin decide whther it is going to set a password expiration time or just leave it empty. In general service tickts have strong random passwords so they do not need a password policy or expiration at all. https://fedorahosted.org/freeipa/ticket/1839
* Add admin SIDsSumit Bose2011-09-231-6/+56
| | | | | The admin SID DOMAIN-SID-500 will be assigned to the IPA admin user and the admin group SID DOMAIN-SID-512 to the admins group.
* Don't remove /tmp when removing temp cert dirMarko Myllynen2011-09-221-1/+1
| | | | | | If /tmp happens to be empty os.removedirs() happily removes it... https://fedorahosted.org/freeipa/ticket/1843
* Always require SSL in the Kerberos authorization block.Rob Crittenden2011-09-232-2/+3
| | | | | | | This also corrects a slight bug where if add is True then we always re-update the file. https://fedorahosted.org/freeipa/ticket/1755
* Fixed problem displaying special characters.Endi S. Dewata2011-09-238-38/+35
| | | | | | | | Some jQuery objects in various locations have been modified to use text() to show values obtained from the server (except messages). The text() will automatically encode special characters. Ticket #1798
* Don't log one-time password in logs when configuring client.Rob Crittenden2011-09-231-4/+5
| | | | https://fedorahosted.org/freeipa/ticket/1801
* Fixed problem on combobox with search limit.Endi S. Dewata2011-09-231-12/+7
| | | | | | | | | | | The IPA.combobox_widget has been modified such that if the drop-down list doesn't contain the stored value (due to search limit) it will not select anything from the list. The widget has also been modified not to select the value that matches the filter automatically because that might not be the user's intention. Ticket #1819
* Removed undo flags from dialog field specs.Endi S. Dewata2011-09-2310-96/+51
| | | | | | | Since the undo flag is now automatically set to false in dialogs, it's no longer necessary to specify it in the field specs. Ticket #1394
* Modified dialog to use sections.Endi S. Dewata2011-09-2316-407/+378
| | | | | | | | | | | | | | | The IPA.dialog has been modified to store sections instead of fields. If there is no sections specified, it will create a default section. The adder dialog for automount map has been modified such that the fields related to indirect map are stored in a section which will only be visible when the map type is set to indirect. The adder dialog for host has been modified such that it uses a custom section for hostname and DNS zone and standard section for the other fields. Ticket #1394
* Shut down duplicated file handle when HTTP response code is not 200.Rob Crittenden2011-09-231-0/+11
| | | | | | | httplib purposely keeps the socket open as a file on failed requests. We need to close this file otherwise nss_shutdown() will fail. https://fedorahosted.org/freeipa/ticket/1807
* Fixed problem enrolling member with the same name.Endi S. Dewata2011-09-223-91/+67
| | | | | | | | | | The IPA.association_adder_dialog has been modified to use an exclusion list to hide entries that are already enrolled. The IPA.adder_dialog has been modified to store the columns directly in the available & selected tables. Ticket #1797
* Fixed problem enabling/disabling DNS zone.Endi S. Dewata2011-09-223-31/+142
| | | | | | | The details facet for DNS zone has been modified to use dnszone- enable/disable for idnszoneactive and dnszone-mod for other fields. Ticket #1813
* ipa-pwd-extop: Enforce old password checksSimo Sorce2011-09-211-1/+64
| | | | | | | If a user is changing his own password, then require the old password to be sent for validation purposes. https://fedorahosted.org/freeipa/ticket/1814
* include <stdint.h> for uintptr_tMarko Myllynen2011-09-222-0/+2
|
* Normalize uid in user principal to lower-case and do validationRob Crittenden2011-09-225-16/+114
| | | | | | | Use same normalization and validation in passwd plugin and add some tests for invalid principals https://fedorahosted.org/freeipa/ticket/1778
* ipa-pwd-extop: Fix segfault in password change.Simo Sorce2011-09-211-0/+7
| | | | | Do not pass an empty buffer to ber_init() as it will assert. Check before hand and return an error.
* Fix /usr/bin/ipa dupled server listMartin Kosek2011-09-221-1/+9
| | | | | | | | | Fix get_url_list() so that the configured master server is there just once. This fix lets /usr/bin/ipa try connecting to all IPA masters just once and not print confusing server list with dupled master. https://fedorahosted.org/freeipa/ticket/1817
* Remove checks for ds-replication pluginMartin Kosek2011-09-223-21/+2
| | | | | | | The replication plugin is no longer shipped as a separate package. Remove the code checking its existence. https://fedorahosted.org/freeipa/ticket/1815
* Fixed missing cancel button in unprovisioning dialog.Endi S. Dewata2011-09-211-0/+4
| | | | | | | The host unprovisioning dialog has been modified to provide a cancel button. Ticket #1811
* Removed HBAC rule type.Endi S. Dewata2011-09-211-17/+0
| | | | | | | HBAC rule type has been removed from the list page and details page because it is no longer supported in IPA 3.0. Ticket #1795
* Fixed columns in HBAC/sudo rules list pages.Endi S. Dewata2011-09-212-31/+48
| | | | | | | | The following list pages were modified to show these columns only: * HBAC rules: name, type, enabled, description * Sudo rules: name, enabled, description Ticket #1796
* conncheck: Additional check to verify the admin password is okSimo Sorce2011-09-211-0/+9
| | | | | | If we can get a ticket for the master then we know we got all right. This should avoid being prompted again by ssh if the kinit failed and for some reason the error was not caught (seen in live tests).
* Fix typo in v3 base schemaSumit Bose2011-09-211-3/+3
|
* 25 Create Tool for Enabling/Disabling Managed Entry PluginsJR Aquino2011-09-217-236/+275
| | | | | | | | Remove legacy ipa-host-net-manage Add ipa-managed-entries tool Add man page for ipa-managed-entries tool https://fedorahosted.org/freeipa/ticket/1181
* Update samba LDAP schemaSumit Bose2011-09-201-1/+39
| | | | | | The samba LDAP schema is updated to the lastest version available from the samba source code to be able to use the new trust related object class and attributes.
* Fix ACIs in ipa-adtrust-installSumit Bose2011-09-201-2/+13
|
* Fixed posix group checkbox.Endi S. Dewata2011-09-203-10/+40
| | | | | | | | | | | | In the adder dialog for groups the checkbox has been modified to use the correct field name "nonposix" and be checked by default. Note: This is a temporary fix to minimize the changes due to release schedule. Eventually the field label will be changed into "Non-POSIX group" and the checkbox will be unchecked by default, which is more consistent with CLI. Ticket #1799
* schema: Add new attributes and objectclasses for AD TrustsSimo Sorce2011-09-201-2/+13
|
* dirsrv is not stopped correctly in the fallbackMartin Kosek2011-09-201-1/+1
| | | | | | | The previous patch fixed ipactl stop command. However, the dirsrv stop in the ipactl start command fallback was not right either. https://fedorahosted.org/freeipa/ticket/1800
* ipactl does not stop dirsrvMartin Kosek2011-09-201-1/+1
| | | | | | | Remove an invalid instance name passed to dirsrv service so that it is correctly stopped. https://fedorahosted.org/freeipa/ticket/1800
* The return value of restorecon is not reliable, ignore it.Rob Crittenden2011-09-201-3/+7
| | | | https://fedorahosted.org/freeipa/ticket/1816
* ipa-kdb: Properly set password expiration time.Simo Sorce2011-09-193-4/+74
| | | | | | | We do the policy check so we are the only one that can calculate the new pwd espiration time. Fixes: https://fedorahosted.org/freeipa/ticket/1793
* Fix client install on IPv6 machines.Jan Cholasta2011-09-191-2/+7
| | | | ticket 1804
* Suppress managed netgroups as indirect members of hosts.Rob Crittenden2011-09-192-1/+35
| | | | | | | By design these managed netgroups are not supposed to show unless you specifically want to see them. https://fedorahosted.org/freeipa/ticket/1738
* Change the Requires for the server and server-selinux for proper orderRob Crittenden2011-09-151-2/+3
| | | | | | | | | | The server package needs to be installed before the server-selinux package otherwise the SELinux contexts won't get set properly. The (postun) is so you can continue to do yum erase freeipa-python and it will pick up everything else. https://fedorahosted.org/freeipa/ticket/1779
* Removed entitlement menu.Endi S. Dewata2011-09-161-1/+0
| | | | Ticket #1806
* Check that install hostname matches the server hostname.Jan Cholasta2011-09-141-0/+5
| | | | ticket 1717
* Fixed problem opening host adder dialog.Endi S. Dewata2011-09-141-0/+1
| | | | | | | | The hidden fqdn field in the host adder dialog has been changed to use a generic widget instead of text widget to avoid null pointer error since the UI elements are never created. Ticket #1788
* Add ipa-adtrust-install utilitySumit Bose2011-09-1412-1/+673
| | | | https://fedorahosted.org/freeipa/ticket/1619
* Skip the cert validator if the csr we are passed in is a valid filenameRob Crittenden2011-09-142-1/+8
| | | | | | | | | The validator will still fire, just after the load_files() call. Basically it will hit the validator twice. The first time it will exit because the value of csr is a filename. The second time it will run the validator against the contents of the file. ticket https://fedorahosted.org/freeipa/ticket/1777
* Update ipa-ldap-updater man page saying it is not an end-user utilityRob Crittenden2011-09-141-4/+8
| | | | https://fedorahosted.org/freeipa/ticket/1792
generated by cgit (git 2.34.1) at 2024-05-02 08:59:41 +0000