summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* Import package_installed_name as wellAlexander Bokovoy2011-07-011-1/+1
|
* Make error reporting more 'local' for various configurations of nss_ldap ↵Alexander Bokovoy2011-07-012-1/+20
| | | | | | | | | | | | | | packages https://fedorahosted.org/freeipa/ticket/1369 When nss_ldap-based configuration does not work, report proper package name instead of always assuming nss_ldap. At least, in RHEL6 and Fedora appropriate package is called nss-pam-ldapd while in older releases and other distributions it might be called differently. The change makes less confusing error reporting. It also introduces common utility function package_installed_name() which provides an interface to query package manager for existence of mutually exclusive packages which is helpful to distinguish between different configuration paths.
* Fixed button style in EntitlementsEndi S. Dewata2011-07-011-1/+1
| | | | | | | | The entitlement buttons are located serveral levels underneath facet-controls, so the CSS selector has been fixed to extend beyond facet-controls' immediate children. Ticket #1419
* Added confirmation dialog for user activation.Endi S. Dewata2011-07-013-59/+131
| | | | | | | | | The IPA.user_status_widget has been modified such that it checks the facet dirty status and asks the admin to either Update or Reset the changes. Then the widget shows a dialog to confirm whether the admin wants to activate/deactivate the user. Ticket #1395
* config widgets entity select default group checkbox for migrationAdam Young2011-06-305-14/+31
|
* Fixed hard-coded messages.Endi S. Dewata2011-06-309-116/+228
| | | | | | Hard-coded messages in the UI have been replaced with I18n messages. Ticket #1396
* Removed unused images.Endi S. Dewata2011-06-3014-8/+0
| | | | | | Images that are no longer used have been removed. Ticket #990
* ipadefaultemaildomainAdam Young2011-06-301-0/+1
|
* config fieldsAdam Young2011-06-303-215/+452
| | | | | | | | | | https://fedorahosted.org/freeipa/ticket/1403 https://fedorahosted.org/freeipa/ticket/1404 https://fedorahosted.org/freeipa/ticket/1405 https://fedorahosted.org/freeipa/ticket/1406 fields and sections for config screen Using multivalue controls for object classes
* undefined pkeys https://fedorahosted.org/freeipa/ticket/1399Adam Young2011-06-292-1/+8
| | | | Thereis not metatdata defined pkey for config, so we need to short circuit the logic that uses the metatdata pkey to look up the key from the hashurl.
* containing entity pkeysAdam Young2011-06-292-6/+29
| | | | | | | | | Instead of looking for a match on the entity name, use the nesting structure of containing entites to grab their pkeys. Code review fixes https://fedorahosted.org/freeipa/ticket/674
* shorten url cache state in a javascript variable, and leave on information ↵Adam Young2011-06-2812-56/+95
| | | | | | | | | | | | | | about the current entity in the URL hash params https://fedorahosted.org/freeipa/ticket/674 decrement depth for hidden tabs. Initialize state from url useing delete for removing state stricter attribute matching not incrementing depth for all hidden tabs. whitespace cleanup
* Replace the 'private' option in netgroup-find with 'managed'.Jan Cholasta2011-06-283-7/+13
| | | | | | | The 'private' option is kept in to maintain API compatibility, but is hidden from the user. ticket 1120
* Remove redundant configuration values from krb5.conf.Jan Cholasta2011-06-282-6/+0
| | | | ticket 1358
* memory leak in ipa_winsync_get_new_ds_user_dn_cbRich Megginson2011-06-281-0/+1
| | | | | The new_dn_string passed into this function is malloc'd. It must be freed before we reassign the value.
* modify user deleted in AD crashes winsyncRich Megginson2011-06-281-1/+8
| | | | | | | | | | | | https://fedorahosted.org/freeipa/ticket/1382 crash in winsync if replaying a MOD and user does not exist in AD If the AD entry is deleted before the deletion can be synced back to IPA, and in the meantime an operation is performed on the corresponding entry in IPA that should be synced to AD, winsync attempts to get the AD entry and it is empty. This just means the operation will not go through, and the entry will be deleted when the sync from AD happens. The IPA winsync plugin needs to handle the case when the ad_entry is NULL.
* winsync enables disabled users in ADRich Megginson2011-06-281-3/+5
| | | | | | | | | | https://fedorahosted.org/freeipa/ticket/1379 winsync enables disabled users in AD when the AD entry changes This was likely broken when ipa switched from using CoS/groups for account inactivation to using nsAccountLock directly. The code that handled the account sync in the from AD direction was broken, but was never found before now because it had not been used. The fix is to correctly set or remove nsAccountLock.
* Allow recursion by defaultMartin Kosek2011-06-271-0/+3
| | | | | | | Update name server configuration file to allow any host to issue recursive queries (allow-recursion statement). https://fedorahosted.org/freeipa/ticket/1335
* Generate record type list from metadata ↵Adam Young2011-06-281-6/+16
| | | | | | https://fedorahosted.org/freeipa/ticket/945 now matches record at the end of the string
* Minor typos in the examplesAlexander Bokovoy2011-06-271-2/+2
|
* Convert Bool to TRUE/FALSE when working with LDAP backend ↵Alexander Bokovoy2011-06-272-4/+7
| | | | | | | | https://fedorahosted.org/freeipa/ticket/1259 According to RFC4517 the only valid values for a boolean in LDAP are TRUE or FALSE. This commit adds support to recognize TRUE and FALSE as valid Bool constants when converting from LDAP attribute values and enforces TRUE or FALSE string for account locking.
* Fixed undo all problem.Endi S. Dewata2011-06-271-23/+36
| | | | | | | The IPA.multivalued_text_widget has been modified such that the 'undo all' will appear only if at least one of the values is dirty. Ticket #1109
* validate required fields https://fedorahosted.org/freeipa/ticket/1329Adam Young2011-06-273-2/+12
| | | | overides required with optional.
* optional uidAdam Young2011-06-274-1/+29
| | | | Make the uid field optional
* Fixed DNS records page title.Endi S. Dewata2011-06-271-0/+1
| | | | | The DNS records are presented as a facet in the DNS zone details page, so the page title should say DNS Zone.
* identify target as section for permissionsAdam Young2011-06-271-0/+1
|
* Fixed entity labels.Endi S. Dewata2011-06-2718-427/+65
| | | | | | | | | | | | | | | | The entity labels in the following locations have been fixed: - search facet title: plural - details facet title: singular - association facet title: singular - breadcrumb: plural - adder dialog title: singular - deleter dialog title: plural Some entity labels have been changed into the correct plural form. Unused file install/ui/test/data/i18n_messages.json has been removed. Ticket #1249 Ticket #1387
* Added singular entity labels.Endi S. Dewata2011-06-2725-4/+57
| | | | | | | | | | | | | | | A new attribute label_singular has been added to all entities which contains the singular form of the entity label in lower cases except for acronyms (e.g. HBAC) or proper nouns (e.g. Kerberos). In the Web UI, this label can be capitalized using CSS text-transform. The existing 'label' attribute is intentionally left unchanged due to inconsistencies in the current values. It contains mostly the plural form of capitalized entity label, but some are singular. Also, it seems currently there is no comparable capitalization method on the server-side. So more work is needed before the label can be changed. Ticket #1249
* oneliner correct typo in ipasudorunas_groupJr Aquino2011-06-261-1/+1
| | | | https://fedorahosted.org/freeipa/ticket/1326
* Verify that the hostname is fully-qualified before accessing the service ↵Jan Cholasta2011-06-242-8/+10
| | | | | | | | | information in ipactl. Fail gracefully if the supplied hostname isn't fully-qualified in ipa-server-install. ticket 1035
* Slight performance improvement by not doing some checking in production modeRob Crittenden2011-06-231-6/+12
| | | | | | These changes save a few hundred ms but every little bit helps. ticket 1023
* Added record count into association facet tabs.Endi S. Dewata2011-06-245-71/+88
| | | | | | The details and association facets have been modified to show the number of records in each association in the corresponding facet tab. Ticket #1386
* Make dogtag an optional (and default un-) installed component in a replica.Rob Crittenden2011-06-2312-133/+437
| | | | | | | | | | | | | | A dogtag replica file is created as usual. When the replica is installed dogtag is optional and not installed by default. Adding the --setup-ca option will configure it when the replica is installed. A new tool ipa-ca-install will configure dogtag if it wasn't configured when the replica was initially installed. This moves a fair bit of code out of ipa-replica-install into installutils and cainstance to avoid duplication. https://fedorahosted.org/freeipa/ticket/1251
* automountkey detailsAdam Young2011-06-234-16/+102
| | | | | | Adds hooks for navigation to the show page due to the unusual way that keys are accessed. https://fedorahosted.org/freeipa/ticket/1257
* Let the framework be able to override the hostname.Rob Crittenden2011-06-238-24/+32
| | | | | | | | | | | | | | | | | | The hostname is passed in during the server installation. We should use this hostname for the resulting server as well. It was being discarded and we always used the system hostname value. Important changes: - configure ipa_hostname in sssd on masters - set PKI_HOSTNAME so the hostname is passed to dogtag installer - set the hostname when doing ldapi binds This also reorders some things in the dogtag installer to eliminate an unnecessary restart. We were restarting the service twice in a row with very little time in between and this could result in a slew of reported errors, though the server installed ok. ticket 1052
* Added navigation breadcrumb.Endi S. Dewata2011-06-237-70/+86
| | | | | | | | Navigation breadcrumb has been added to the facet header. The breadcrumb will appear on details, association, and automount facets. Ticket #1323
* Converted entity header into facet header.Endi S. Dewata2011-06-2312-500/+348
| | | | | | | | | | | The content and the size of entity header changes depending on the facet being displayed, so the entity header has been converted into a facet header to allow better control via CSS. The DNS record facet has been updated to use the same styling and support scrolling. To help styling and testing, all buttons have been assigned a name.
* Facet icon swap and tab sizingkylebaker2011-06-234-5/+35
|
* Tab and spacing on listkylebaker2011-06-235-10/+151
|
* Update test_role_plugin test to include a comma in a privilegeJohn Dennis2011-06-221-6/+10
| | | | | | | | | | | | | | | | | | | | | | Introduce a comma into a privilege name to assure we can handle commas. Commas must be escaped for some parameters, add escape_comma() utility and invoke it for the necessary parameters. Utilize a DN object to properly construct a DN and most importantly to allow equality testing beween the DN we expect and the one returned. This is necessary because a DN can be encoded according to different encoding syntaxes all of which are valid. DN objects always decode from their input. DN objects can test for equality between DN's without being affected by DN encoding. Add a equality callback for the dn in the expected dict. When the test framework tests for equality between the expected value and the returned value it will call back into a function we provide which will convert the returned dn into a DN object. An equality test is then performed between two DN objects. This is the only way to properly compare two dn's.
* Use DN class in get_primary_key_from_dn to return decoded valueJohn Dennis2011-06-221-1/+4
|
* Add backslash escape support for cvs readerJohn Dennis2011-06-222-2/+4
|
* assert_deepequal supports callback for equality testingJohn Dennis2011-06-221-1/+10
|
* Module for DN objects plus unit testJohn Dennis2011-06-222-0/+2042
|
* Fix IPA install for secure umaskMartin Kosek2011-06-214-41/+60
| | | | | | | | Make sure that IPA can be installed with root umask set to secure value 077. ipa-server-install was failing in DS configuration phase when dirsrv tried to read boot.ldif created during installation. https://fedorahosted.org/freeipa/ticket/1282
* Update translation filesRob Crittenden2011-06-2118-18126/+110008
|
* Make data type of certificates more obvious/predictable internally.Rob Crittenden2011-06-2113-182/+184
| | | | | | | | | | | | | | | | | | | For the most part certificates will be treated as being in DER format. When we load a certificate we will generally accept it in any format but will convert it to DER before proceeding in normalize_certificate(). This also re-arranges a bit of code to pull some certificate-specific functions out of ipalib/plugins/service.py into ipalib/x509.py. This also tries to use variable names to indicate what format the certificate is in at any given point: dercert: DER cert: PEM nsscert: a python-nss Certificate object rawcert: unknown format ticket 32
* tooltips for host addAdam Young2011-06-222-2/+4
| | | | | https://fedorahosted.org/freeipa/ticket/1363 https://fedorahosted.org/freeipa/ticket/1361
* Do lazy LDAP schema retrieval in json handler.Rob Crittenden2011-06-211-0/+1
| | | | | | | It was possible to get to this point without a schema if the first handled request resulted in a Kerberos error. https://fedorahosted.org/freeipa/ticket/1354
* Fixed problem with navigation tabs on reload.Endi S. Dewata2011-06-211-6/+8
| | | | | | | The navigation have been fixed to show the correct active tabs after browser reload. Ticket #1362
generated by cgit (git 2.34.1) at 2024-11-13 00:12:48 +0000