summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* Become IPA v2 RC 3 (2.0.0.rc3)rc_3-2-0-0Rob Crittenden2011-03-101-1/+1
|
* Use TLS for dogtag replication agreements.Rob Crittenden2011-03-103-7/+91
| | | | | | | | Configure the dogtag 389-ds instance with SSL so we can enable TLS for the dogtag replication agreements. The NSS database we use is a symbolic link to the IPA 389-ds instance. ticket 1060
* Fixed self service page.Endi S. Dewata2011-03-083-8/+31
| | | | | Collaborated with ayoung to fix this problem: https://fedorahosted.org/freeipa/ticket/1070
* ipa-dns-install script failsMartin Kosek2011-03-081-1/+1
| | | | | | | This patch fixes a typo in class Service, function __get_conn which causes ipa-dns-install script to fail every time. https://fedorahosted.org/freeipa/ticket/1065
* chkconfig the ipa service off when it is uninstalled.Rob Crittenden2011-03-081-0/+2
| | | | ticket 1056
* If --hostname is provided for ipa-client-install use it everywhere.Rob Crittenden2011-03-082-13/+134
| | | | | | | | | | | | | | | | | | | If a hostname was provided it wasn't used to configure either certmonger or sssd. This resulted in a non-working configuration. Additionally on un-enrollment the wrong hostname was unenrolled, it used the value of gethostname() rather than the one that was passed into the installer. We have to modify the CA configuration of certmonger to make it use the right principal when requesting certificates. The filename is unpredicable but it will be in /var/lib/certmonger/cas. We need to hunt for ipa_submit and add -k <principal> to it, then undo that on uninstall. These files are created the first time the certmonger service starts, so start and stop it before messing with them. ticket 1029
* Always try to stop tracking the server cert when uninstalling client.Rob Crittenden2011-03-081-10/+13
| | | | | | | | | | | stop_tracking() is robust enough to do the right thing if no certificate exists so go ahead and always call it. If the certificate failed to be issued for some reason the request will still in certmonger after uninstalling. This would cause problems when trying to reinstall the client. This will go ahead and always tell certmonger to stop tracking it. ticket 1028
* Improve error handling and return status codes in ipactlMartin Kosek2011-03-071-30/+89
| | | | | | | | | | | | | | | | | | | | | | | | | | There are cases when ipactl returns success even when it fails. Plus, when the error really is detected the status codes are not LSB compliant. This may result in consequent issues. This patch improves error handling in ipactl and adds LSB compliant status codes. Namely: 0 program is running or service is OK 3 program is not running 4 program or service status is unknown for "status" action. Status code 4 is issued when IPA is not configured to distinguish this state from not running IPA. For other actions, the following non-zero status codes are implemented: 1 generic or unspecified error 2 invalid or excess argument(s) 4 user had insufficient privilege 6 program is not configured https://fedorahosted.org/freeipa/ticket/1055
* Add Transifex tx client configuration fileJohn Dennis2011-03-071-0/+8
|
* Fixed memory leak caused by certificate dialogs.Endi S. Dewata2011-03-072-252/+204
| | | | Ticket 1054
* Fixed memory leak caused by IPA.error_dialog.Endi S. Dewata2011-03-062-27/+29
| | | | Ticket 1054
* Fixed memory leak caused by DNS record deleter dialog.Endi S. Dewata2011-03-041-56/+74
| | | | Ticket 1054
* Fixed memory leak caused by DNS record adder dialog.Endi S. Dewata2011-03-041-48/+62
| | | | Ticket 1054
* Fixed memory leak caused by reset password dialog.Endi S. Dewata2011-03-041-42/+75
| | | | Ticket 1054
* Fixed memory leak caused by is_dirty dialogs.Endi S. Dewata2011-03-042-27/+26
| | | | Ticket 1054
* Fixed memory leak caused by IPA.dialog.Endi S. Dewata2011-03-041-6/+8
| | | | Ticket 1054
* Update API to reflect doc change in force parameter in dnszone_addRob Crittenden2011-03-041-1/+1
|
* Fixed host enrollment timeEndi S. Dewata2011-03-041-6/+6
| | | | | | | | The month in krblastpwdchange (LDAP Generalized Time) is 1-based but the month in JavaScript Date.setUTCFullYear() is 0-based so it needs a conversion. Ticket 1053
* Fix style and grammatical issues in built-in command help.Rob Crittenden2011-03-0422-195/+222
| | | | | | | There is a rather large API.txt change but it is only due to changes in the doc string in parameters. ticket 729
* Skip DNS validation checks if we're setting up DNS in ipa-server-install.Rob Crittenden2011-03-041-0/+4
| | | | | | | If we're going to be authoritative ourselves don't bother with what other DNS servers think. ticket 1036
* Better truncated messageAdam Young2011-03-031-1/+1
|
* type in default textAdam Young2011-03-031-1/+1
|
* Use ldapi: instead of unsecured ldap: in ipa core tools.Pavel Zuna2011-03-039-50/+65
| | | | | | The patch also corrects exception handling in some of the tools. Fix #874
* Fix error in user plugin email normalizer for empty --setattr=email=.Pavel Zuna2011-03-031-1/+1
| | | | ticket 1048
* typo in truncation messageAdam Young2011-03-031-1/+1
|
* Need to restart the dogtag 388-ds instance before using it.Rob Crittenden2011-03-031-0/+17
| | | | | | | | | | | Restart the 389-ds instance to ensure all schema is loaded that dogtag may have installed as files. According to bug https://bugzilla.redhat.com/show_bug.cgi?id=680984 this it is only needed on clones. ticket 1024
* Replace only if old and new have nothing in commonRob Crittenden2011-03-032-1/+205
| | | | | | | Jakub did the initial diagnosis of this, I added a fix for removing the last entry when removing members and a test case. ticket 1000
* Inconsistent sysrestore file handling by IPA server installerMartin Kosek2011-03-033-4/+8
| | | | | | | | | | | | IPA server/replica uninstallation may fail when it tries to restore a Directory server configuration file in sysrestore directory, which was already restored before. The problem is in Directory Server uninstaller which uses and modifies its own image of sysrestore directory state instead of using the common uninstaller image. https://fedorahosted.org/freeipa/ticket/1026
* fix truncated messageAdam Young2011-03-031-2/+7
|
* IPA replica/server install does not check for a clientMartin Kosek2011-03-032-0/+10
| | | | | | | | | | | When IPA replica or server is configured it does not check for possibly installed client. This will cause the installation to fail in the very end. This patch adds a check for already configured client and suggests removing it before server/replica installation. https://fedorahosted.org/freeipa/ticket/1002
* Use modified entity find commands for associationsAdam Young2011-03-023-35/+28
| | | | | | https://fedorahosted.org/freeipa/ticket/1011 Does not completely fix the problem in the ticket, but it does mitigate the failure.
* update API.txtAdam Young2011-03-021-8/+8
|
* Save changes before modifying association.Endi S. Dewata2011-03-025-10/+49
| | | | | | | | | | | In a details page, usually any changes done to the fields will not be applied until the user clicks the Update button. However, if the page contains an association table, any addition/deletion to the table will be applied immediately. To avoid any confusion, the user is now required to save or reset all changes to the page before modifying the association. A dialog box will appear if the page contains any unsaved changes.
* Fixed attribute for SUDO command group membership.Endi S. Dewata2011-03-021-5/+2
| | | | | The correct attribute name for SUDO command group membership is memberof_sudocmdgroup and it contains the group name instead of dn.
* Store list of non-master replicas in DIT and provide way to list themSimo Sorce2011-03-025-30/+108
| | | | Fixes: https://fedorahosted.org/freeipa/ticket/1007
* Fix kinit invocation in ipa-client-installSimo Sorce2011-03-011-1/+2
|
* Revert "Set hard limit on number of commands in batch request to 256."Adam Young2011-03-012-19/+0
| | | | This reverts commit 79d22f8341026450ba7ca564e24812c9351c7e70.
* Replaced SUDO with Sudo in UI test data.Endi S. Dewata2011-03-0110-22/+22
| | | | Ticket 1005
* Use Sudo rather than SUDO as a label.Rob Crittenden2011-03-019-54/+54
| | | | ticket 1005
* Removed association facets based on memberofindirect.Endi S. Dewata2011-03-011-0/+1
| | | | | | | Association facets based on memberofindirect attribute have been removed because the attribute is non-assignable. Ticket 1027
* Fix replica setup using replication admin kerberos credentialsSimo Sorce2011-03-012-1/+7
| | | | Fixes: https://fedorahosted.org/freeipa/ticket/1022
* Use wrapper for sasl gssapi binds so it behaves like other bindsSimo Sorce2011-03-014-12/+13
| | | | | | | | | | By calling directly sasl_interactive_bind_s() we were not calling __lateinit() This in turn resulted in some variables like dbdir not to be set on the IPAadmin object. Keep all bind types in the same place so the same common sbind steps can be performed in each case. Related to: https://fedorahosted.org/freeipa/ticket/1022
* Make activated/inactivated groups optionalSimo Sorce2011-03-013-34/+40
| | | | | | directly change nsAccountLock on the entry if they are not used Fixes: https://fedorahosted.org/freeipa/ticket/1021
* Fix user synchronization.Simo Sorce2011-03-011-0/+2
| | | | | | | | | We need to set uidNumber and gidNumber to the magic values so that DNA can assign appropriate Ids, otherwise the synchronization of users from AD will fail with an error about posixAccount requiring a missing (uidNumber) attribute. Fixes: https://fedorahosted.org/freeipa/ticket/1020
* Unbreak the ipa winsync plugin.Simo Sorce2011-03-011-1/+1
| | | | | | Fix RDN construction. Fixes: https://fedorahosted.org/freeipa/ticket/1015
* Fix winsync agreements setupSimo Sorce2011-03-011-23/+38
| | | | Fixes: https://fedorahosted.org/freeipa/ticket/1006
* Set the loginShell attribute on winsynced entries if configuredSimo Sorce2011-03-014-1/+66
| | | | Fixes: https://fedorahosted.org/freeipa/ticket/266
* Final i18n unit test fixes.Pavel Zuna2011-03-014-14/+16
|
* Use pygettext to generate translatable strings from plugin files.Pavel Zuna2011-03-015-12/+834
| | | | | | | | | | | | This patch replaces xgettext with a custom pygettext to generate translatable strings from plugin files in ipalib/plugins. pygettext was modified to handle plural forms (credit goes to Jan Hendrik Goellner) and had some bugs fixed by myself. We only use it for plugins, because it's the only place where we need to extract docstrings for the built-in help system. I also had to make some changes to the way the built-in documentation systems gets docstrings from modules for this to work.
* Fix i18n related failures in unit tests.Pavel Zuna2011-03-015-57/+29
|
generated by cgit (git 2.34.1) at 2024-06-09 03:55:04 +0000