summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* Split dsinstance configurationSimo Sorce2010-12-103-67/+107
| | | | | This is so that master and replica creation can perform different operations as they need slightly diffeent settings to be applied.
* button and table stylingKyle Baker2010-12-109-55/+204
| | | | | | replaced expand contract +- with icons removed background for action buttons and gave them their own class Major css cleanup
* Section header prefix updateEndi S. Dewata2010-12-091-115/+105
| | | | | | | | | The '+' and '-' signs before the section headers in details facet are now enclosed in square brackets. The section content is now hidden/shown using slideToggle(). The ipa_details_create() and ipa_details_setup() have been moved into ipa_details_facet.
* SUDO adjustmentsEndi S. Dewata2010-12-0914-255/+1575
| | | | | | | | | | | | | | | | | | | | | | | | | The SUDO rule details facet has been updated to support the latest UI spec. The facet consists of 5 sections: general, users, hosts, commands, and run-as. The general section contains the SUDO rule description and status. If the status is changed, the sudorule-enable/disable will be invoked. The other sections contain radio buttons for the association category and tables for the members. When a member is added or removed, the category will be adjusted appropriately. If the category is changed to 'all', 'allow', or 'deny', all members will be removed. The last section is currently not working because backend support is not yet available. The adder dialog boxes for users, groups, and hosts has been modified to accept external identities. The layout for the base adder dialog was updated. The base dialog class was updated to support templates. The SUDO dialog boxes were implemented using templates. New CSS classes were added to ipa.css. The HBAC rule details facet has been updated as well.
* If any params marked alwaysask are provided then prompt for none of them.Rob Crittenden2010-12-091-1/+6
| | | | ticket 604
* Add documentation to the migrate-ds command.Rob Crittenden2010-12-091-2/+34
| | | | ticket 539
* Move ntp configuration up top.Simo Sorce2010-12-091-9/+10
| | | | | | | Also move down some dsinstance related operation close to other dsinstance operations. Fixes: https://fedorahosted.org/freeipa/ticket/595
* Fix automount testsRob Crittenden2010-12-081-26/+25
|
* ipaHomesRootDir was changes to an IA5 string, change the matching rule tooRob Crittenden2010-12-081-1/+1
|
* remove URL from error messages.Adam Young2010-12-081-1/+0
| | | | URL was always ipa/json. This means nothing to the end user.
* Fix search filter generator in ldap2 for NOT operator.Pavel Zuna2010-12-081-0/+6
| | | | | Search filters generated from attributes with multiple values were incorrect when the NOT operator was used (ldap.MATCH_NONE).
* Add plugin for manage self-service ACIsRob Crittenden2010-12-084-15/+400
| | | | | | | | | This is just a thin wrapper around the aci plugin, controlling what types of ACIs can be added. Right now only ACIs in the basedn can be managed with this plugin. ticket 531
* Enable/Disable SudoRule https://fedorahosted.org/freeipa/ticket/570Jr Aquino2010-12-081-2/+60
|
* Adding user/host category and ipaenabledflag ↵Jr Aquino2010-12-081-0/+16
| | | | https://fedorahosted.org/freeipa/ticket/570 This patch Addresses items: 1. The UI needs a rule status with values active & inactive. The CLI doesn't have this attribute. HBAC has ipaenabledflag attribute which can be managed using hbac-enable/disable operations. 2. The UI needs a user category for the "Who" section. The CLI doesn't have this attribute. HBAC has usercategory attribute which can be managed using hbac-add/mod operations. 3. The UI needs a host category for the "Access this host" section. The CLI doesn't have this attribute. HBAC has hostcategory attribute which can be managed using hbac-add/mod operations.
* Make pkinit setup optional in ipa-replica-prepare too.Simo Sorce2010-12-082-5/+15
| | | | | | Also add fixes for ipa-replica-install as that had issues too. Fixes: https://fedorahosted.org/freeipa/ticket/527
* Navigation updatesEndi S. Dewata2010-12-078-86/+89
| | | | | | | | | | | | | | | The entity.default_facet has been removed, instead the first facet registered to the entity will be considered as the default facet. So, the 'setup' parameter has been removed from tab definitions because it's no longer necessary. The ipa_details_only_setup() has been removed as well. An 'entity' parameter has been added to tab definitions to specify which entity corresponds to a tab item. The tab label has been changed to use entity label if available. Some hard-coded labels have been removed. The unit tests have been updated.
* Fix kwargs usage in automount pluginJakub Hrozek2010-12-071-15/+12
| | | | https://fedorahosted.org/freeipa/ticket/580
* Fix default attributes in config plugin (ipadefaultemaildomain).Pavel Zuna2010-12-071-1/+1
| | | | Ticket #573
* Add new parameter type IA5Str and use this to enforce the right charset.Rob Crittenden2010-12-078-20/+80
| | | | ticket 496
* nested entity navigation Made the mechanism for caluculating nested eneties ↵Adam Young2010-12-071-3/+5
| | | | more general, so that we don't have to hard code for SUDO and HBAC, and now to support ACI
* Do not migrate krbPrincipalKeyJakub Hrozek2010-12-071-0/+7
| | | | https://fedorahosted.org/freeipa/ticket/455
* Make the migration plugin more configurableJakub Hrozek2010-12-071-28/+108
| | | | | | | | | | | | This patch adds new options to the migration plugin: * the option to fine-tune the objectclass of users or groups being imported * the option to select the LDAP schema (RFC2307 or RFC2307bis) Also makes the logic that decides whether an entry is a nested group or user (for RFC2307bis) smarter by looking at the DNS. Does not hardcode primary keys for migrated entries. https://fedorahosted.org/freeipa/ticket/429
* Give back smaller and more readable ranges by default.Simo Sorce2010-12-071-5/+6
| | | | | | | Instead of allocating a completely random start between 1M and 2G and a range of 1M values, give 10000 possible 200k ranges. They all start at a 200k boundary so they generate more readable IDs, at least until there arent't too many users/replicas involved.
* Dialog i18nEndi S. Dewata2010-12-0617-137/+74
| | | | | | | | | | The ipa_add_dialog has been fixed to initialize the fields which will get the labels from metadata. Hard-coded labels have been removed from field declarations. The superior() method has been removed because it doesn't work with multi-level inheritance. Superclass method for now is called using <class name>_<method> (e.g. widget_init).
* SUDO Command Groups adjustmentsEndi S. Dewata2010-12-062-12/+18
| | | | | The association facet for SUDO Command Groups has been removed and replaced with an association table in the details page.
* Column i18nEndi S. Dewata2010-12-0613-127/+1932
| | | | | | | | | | The ipa_column has been modified to get the label from metadata during initialization. The ipa_table_widget has been modified to initialize the columns. Hard-coded labels have been removed from column declarations. The ipa_adder_dialog has been modified to execute a search at the end of setup.
* HBAC Service Groups adjustmentsEndi S. Dewata2010-12-0612-377/+403
| | | | | | | | | | | | | | The association facet for HBAC Service Groups has been removed and replaced with an association table in the details page. The ipa_association_table_widget has been modified to support multiple columns in the table itself and in the adder dialog. The ipa_association_adder_dialog and ipa_association_facet have been refactored. The ipa_sudorule_association_widget and ipa_rule_association_widget has been removed because their functionalities have been merged into ipa_association_table_widget.
* entity i18nAdam Young2010-12-0611-226/+375
| | | | | | | | | | | Updated the user,group,host, hostgroup, netgroup, service, and all policy entities to use the newer framework functions, in order to replaced the old array style definitions which did not support i18n. update a few of the newer framerwork functions to get the lables from the meta data. Fixed the unit tests which were expecting a details facet for users, no longer automatically created
* Make use of mozldap vs openldap for plugins selectableSimo Sorce2010-12-0611-18/+40
|
* Add more information and examples on targets.Rob Crittenden2010-12-061-6/+33
| | | | ticket 310
* Ensure list of attrs to retrieve is unique, optimize getting indirect membersRob Crittenden2010-12-061-3/+9
| | | | | | | | | | | This fixes search where we were asking for the member attribute 10 or more times. When retrieving indirect members make sure we always pass around the size and time limits so we don't have to look it up with every call to find_entries() ticket 557
* Remove accessTime from HBAC.Rob Crittenden2010-12-062-45/+47
| | | | ticket 545
* Check if the group existsJan Zeleny2010-12-061-0/+6
| | | | | | | | When setting default group, we should check if the group exists. If not, it could lead to some issues with adding new users after the new default group is set. https://fedorahosted.org/freeipa/ticket/504
* Document that the default group has to existJan Zeleny2010-12-061-1/+2
| | | | | | | | | After calling ipa config --defaultgroup=xxx with nonexistent group xxx, the result will be that no new user can be added. The operation will always fail in the middle because it is not possible to add the new user to desired default group. https://bugzilla.redhat.com/show_bug.cgi?id=654117#c4
* When deleting multiple entries use --continue, not --continuous.Rob Crittenden2010-12-031-1/+1
| | | | ticket 561
* Don't look up the CoS entry with the global password policy.Rob Crittenden2010-12-031-2/+2
| | | | ticket 523
* Provide list of available attributes for use in ACI UI.Rob Crittenden2010-12-036-3/+26
| | | | | | | Also include flag indicating whether the object is bindable. This will be used to determine if the object can have a selfservice ACI. ticket 446
* Fixed association linksEndi S. Dewata2010-12-038-9/+34
| | | | | | | | | | | | | | | | | | | The create_association_facets() has been modified such that it does not generate duplicate links. This is done by assigning the proper labels and hiding non-assignable associations. Each association will get a label based on the attribute used: - memberof: Membership in <entity name> - member.*: <entity name> Members - managedby: Managed by <entity name> The following associations will be hidden: - memberindirect - enrolledby The internal.py was modified to return localized labels. The test data has been updated.
* Removed HBAC Access TimeEndi S. Dewata2010-12-031-14/+2
| | | | | The interface for access time has been removed from HBAC details page. The code has been commented out, but not removed.
* dns2 ui replaceing calls for the dns plugin to the dns2 plugin no has ↵Adam Young2010-12-0310-165/+1352
| | | | attribute permissions and all other benefits of building on the baseldap plugin
* Added some fields to user objectJan Zeleny2010-12-031-2/+46
| | | | | | | Some fields were missing from user object, this change adds them along with their l10n https://fedorahosted.org/freeipa/ticket/305
* Fixed buttons in enrollment dialogEndi S. Dewata2010-12-021-15/+37
| | | | | The Find, Add, and Remove buttons in the enrollment dialog have been replaced with ipa_buttons.
* tooltips uses the doc field for tooltips on text fields on the details pagesAdam Young2010-12-021-1/+6
|
* Do not create reverse zone by defaultJakub Hrozek2010-12-024-5/+16
| | | | | | | Prompt for creation of reverse zone, with the default for unattended installations being False. https://fedorahosted.org/freeipa/ticket/418
* Add labels for passwords, fix output of exceptions, fix passwd output.Rob Crittenden2010-12-023-9/+14
| | | | | | | | | | | Passwords didn't have internationalizable labels. Exceptions that occured during required input weren't printed as unicode so weren't being translated properly. Don't use output_for_cli() directly in the passwd plugin, use output.Output. ticket 352
* This is the second half of a patch. Only the part that had to beRob Crittenden2010-12-026-5/+6
| | | | | | | | | | | | | | | | | | | | | | | re-based got pushed for some reason. Use better description for group names in help and always prompt for members When running <foo>-[add|remove]-member completely interactively it didn't prompt for managing membership, it just reported that 0 members were handled which was rather confusing. This will work via a shell if you want to echo too: $ echo "" | ipa group-add-member g1 This returns 0 members because nothing is read for users or group members. $ echo -e "g1\nadmin\n" | ipa group-add-member This adds the user admin to the group g1. It adds it as a user because user membership is prompted for first. ticket 415
* Drop outdated install/tools/README and add QuickStart link to top READMERob Crittenden2010-12-022-67/+6
| | | | ticket 420
* Use better description for group names in help and always prompt for membersRob Crittenden2010-12-021-5/+8
| | | | | | | | | | | | | | | | | | | When running <foo>-[add|remove]-member completely interactively it didn't prompt for managing membership, it just reported that 0 members were handled which was rather confusing. This will work via a shell if you want to echo too: $ echo "" | ipa group-add-member g1 This returns 0 members because nothing is read for users or group members. $ echo -e "g1\nadmin\n" | ipa group-add-member This adds the user admin to the group g1. It adds it as a user because user membership is prompted for first. ticket 415
* Updated output when calling hbac-showJan Zeleny2010-12-021-2/+6
| | | | | | | | Some attributes weren't included in the output of hbac-show command. This patch fixes it. https://fedorahosted.org/freeipa/ticket/494 https://fedorahosted.org/freeipa/ticket/495
* Normalize and convert default params, tooJakub Hrozek2010-12-021-1/+1
| | | | https://fedorahosted.org/freeipa/ticket/555
generated by cgit (git 2.34.1) at 2024-06-07 19:41:02 +0000