summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* Become IPA v2 RC 2 (2.0.0.rc2)rc_2-2-0-0Rob Crittenden2011-02-231-1/+1
|
* Sudo command groups are not supposed to allow nesting.Rob Crittenden2011-02-234-22/+5
| | | | | | | It was a design decision to not allow nesting sudo command groups, remove it. ticket 1004
* Collect memberof information for sudo commands.Rob Crittenden2011-02-234-3/+34
| | | | | | | | | | | | We weren't searching the cn=sudo container so all members of a sudocmdgroup looked indirect. Add a label for sudo command groups. Update the tests to include verifying that membership is done properly. ticket 1003
* Create default disabled sudo bind userJr Aquino2011-02-235-3/+36
| | | | | | | | Read access is denied to the sudo container for unauthenticated users. This shared user can be used to provide authenticated access to the sudo information. https://fedorahosted.org/freeipa/ticket/998
* Fix typo, add example for when user krbtpolicy takes effect.Rob Crittenden2011-02-231-2/+2
| | | | ticket 594
* Make permission and privilege help text clearerRob Crittenden2011-02-232-8/+18
| | | | ticket 996
* Add man page for the IPA configuration fileRob Crittenden2011-02-233-2/+188
| | | | ticket 969
* splitting banner requires new file in Makefile.amAdam Young2011-02-231-0/+1
|
* Fixed buttons for DNS records.Endi S. Dewata2011-02-231-6/+6
| | | | | The order of the Add and Delete buttons has been reversed to be consistent with those in other facets.
* split logo This allows for more flexilibity in customizing the site, as an ↵Adam Young2011-02-223-1/+1
| | | | end user can replace the logo, the banner or both
* Space above line in table footerAdam Young2011-02-221-0/+1
|
* move expand and collpase all to the right hand sideAdam Young2011-02-222-1/+8
|
* reorder user search columns UXD found in testing that not having the ↵Adam Young2011-02-221-1/+1
| | | | clikcable link as the left most column confused users.
* adder dialogs with external made the styles for the internal and external ↵Adam Young2011-02-221-5/+8
| | | | classes match the styles for available.
* Net group to NetgroupAdam Young2011-02-221-1/+1
|
* I18n update for dialog box buttons.Endi S. Dewata2011-02-228-118/+164
| | | | https://fedorahosted.org/freeipa/ticket/899
* Fixed error dialog box.Endi S. Dewata2011-02-221-18/+4
| | | | | The IPA.cmd() has been modified to set the error dialog box's title properly.
* Entitlements ACIs not visible to Permission pluginMartin Kosek2011-02-221-3/+6
| | | | | | | | This patch fixes Entitlements privileges and ACIs. There were missing descriptions or the ACIs could not be processed by Permissino plugin because of missing prefix. https://fedorahosted.org/freeipa/ticket/997
* Add default roles and permissions for HBAC, SUDO and pw policyRob Crittenden2011-02-225-4/+331
| | | | | | | | | | | Created some default roles as examples. In doing so I realized that we were completely missing default rules for HBAC, SUDO and password policy so I added those as well. I ran into a problem when the updater has a default record and an add at the same time, it should handle it better now. ticket 585
* Set hard limit on number of commands in batch request to 256.Rob Crittenden2011-02-222-0/+19
| | | | ticket 984
* Validate NAPTR recordsJakub Hrozek2011-02-222-4/+30
| | | | https://fedorahosted.org/freeipa/ticket/840
* Set krb5_realm in sssd.conf in the ipa provider.Rob Crittenden2011-02-221-2/+4
| | | | ticket 925
* Move some BuildRequires so building with ONLY_CLIENT works.Rob Crittenden2011-02-221-14/+14
| | | | ticket 978
* search filter focus afdter a search loads, focus moved to the search filter ↵Adam Young2011-02-212-2/+15
| | | | | | text box, tyhe most likely thing that the user will want to change on the page. https://fedorahosted.org/freeipa/ticket/983
* 18 Use TLS for ipadiscovery during ipa-client-install ↵Jr Aquino2011-02-211-0/+24
| | | | https://fedorahosted.org/freeipa/ticket/974
* Fixed error message for invalid Kerberos ticket.Endi S. Dewata2011-02-213-8/+9
| | | | https://fedorahosted.org/freeipa/ticket/490
* Updated test data files.Endi S. Dewata2011-02-213-6751/+14726
|
* I18n update.Endi S. Dewata2011-02-2128-868/+975
| | | | | Hard-coded messages through out the code have been replaced by i18n messages obtained from json_metadata and i18n_messages.
* Make nsslib IPv6 awareJakub Hrozek2011-02-212-17/+96
|
* Document --enable-dns-updates in ipa-client-install man pageJakub Hrozek2011-02-211-0/+3
| | | | https://fedorahosted.org/freeipa/ticket/991
* Add handling for indirect memberof other entries.Rob Crittenden2011-02-2110-10/+265
| | | | | | | | | | | | | | | This creates a new custom attribute, memberofindirect_[plugin]. Using this you can tell the difference between being an actual memberof another entry and being a memberof as the result if inheritence. This is particularly useful when trying to remove members of an entry, you can only remove direct members. I had to add a couple of short sleep calls to make things work a little better. The memberof plugin runs as a postop and we have no way of knowing when it has done its work. If we don't pause we may show some stale data that memberof hasn't updated yet. .3 seconds is an arbitrary choice. ticket 966
* Better doc for idnssoaminimumJakub Hrozek2011-02-182-16/+22
|
* Add aci to make managed netgroups immutable.Rob Crittenden2011-02-182-1/+6
| | | | ticket 962
* Add return value information to the ipa command man pageRob Crittenden2011-02-181-12/+18
| | | | | | The man tool I use, manedit, also excepted all dashes. Seems benign. ticket 803
* Fixes in ipa-join man pageJan Zeleny2011-02-182-11/+11
| | | | | | https://fedorahosted.org/freeipa/ticket/784 https://fedorahosted.org/freeipa/ticket/786 https://fedorahosted.org/freeipa/ticket/787
* Cleanup for netgroup search https://fedorahosted.org/freeipa/ticket/963Jr Aquino2011-02-181-4/+6
|
* Use unicode parameters in the host pluginJakub Hrozek2011-02-181-3/+1
| | | | https://fedorahosted.org/freeipa/ticket/977
* Update Polish & Ukrainian translationsJohn Dennis2011-02-182-25/+25
|
* Updated json_metadata and i18n_messages.Endi S. Dewata2011-02-186-25/+299
| | | | | | The json_metadata() has been updated to return ipa.Objects and ipa.Methods. The i18n_messages() has been updated to include other messages that are not available from the metadata.
* Fixed parameter for user city.Endi S. Dewata2011-02-183-10/+10
| | | | | | | Previously the user's city parameter is defined to use the 'locality' attribute. This was a problem because the attribute would be returned as 'l' by the directory server causing a mismatch. Now the parameter has been changed to use the 'l' attribute.
* Fixed in ipa-server-install help and man pageJan Zeleny2011-02-182-2/+5
| | | | https://fedorahosted.org/freeipa/ticket/831
* Fix NSS initialization errors during ipa-replica-prepareRob Crittenden2011-02-182-6/+2
| | | | | | | | | | | When enabling replication we make an SSL connection. I think the way this goes is python-ldap -> openldap -> NSS. It may be a problem in the openldap SSL client, maybe it isn't calling NSS_Shutdown(). In any case if we use ldapi instead the problem goes away. Back out the temporary code to ignore nss_shutdown errors. ticket 965
* Remove WebUI identifiers from global namespaceMartin Kosek2011-02-1814-639/+569
| | | | | | | | | | | Many WebUI identifiers were defined in a global namespace. This is not a good programming practice and may result in name clashes, for example with other libraries. This patch moves these variables to IPA namespace or its sub-namespaces, when meaningful. https://fedorahosted.org/freeipa/ticket/212
* Reset target DN when generated UUID is used as RDNNathan Kinder2011-02-171-0/+4
| | | | | | | | | | | | | | | When the UUID plug-in generates a value that is used in the RDN of the entry being added, the old DN is free'd and replaced with the new DN. The problem is that the operation in the pblock holds a pointer to the old DN address. This can cause other plug-ins to reference garbage, leading to incorrect results or crashes. This was causing the attribute uniqueness plug-in to not work correctly, resulting in duplicate netgroup entries. The fix is to have the UUID plug-in reset the target DN after changing the DN of the entry to be added. ticket 963
* Try to register DNS name through a DNS Update on install.Simo Sorce2011-02-173-1/+113
| | | | Fixes: https://fedorahosted.org/freeipa/ticket/935
* Raise NotImplementedError for selfsigned cert-remove-holdJakub Hrozek2011-02-171-1/+1
|
* Configure SSSD to use DNS to find the IPA server by default.Rob Crittenden2011-02-171-1/+1
| | | | | | Add the server we registered with as a fallback. ticket 980
* Special handling for nsaccountlock attribute in user.Rob Crittenden2011-02-171-0/+8
| | | | | | | | nsaccountlock doesn't have a visible Param but we want do so some basic validation to be sure garbage doesn't get in there so do it in the pre_callback of add and mod. ticket 968
* Validate that the reverse DNS record is correctJan Zeleny2011-02-171-0/+16
| | | | | | | This patch ensures that PTR records added by FreeIPA are compliant with RFC. https://fedorahosted.org/freeipa/ticket/839
* Document the --rights output formatJan Zeleny2011-02-172-3/+16
| | | | | https://fedorahosted.org/freeipa/ticket/563 https://fedorahosted.org/freeipa/ticket/588
generated by cgit (git 2.34.1) at 2024-04-25 01:54:26 +0000