summaryrefslogtreecommitdiffstats
path: root/install
Commit message (Collapse)AuthorAgeFilesLines
* The default groups we create should have ipaUniqueId setRob Crittenden2011-04-154-2/+22
| | | | | | | | This adds a new directive to ipa-ldap-updater: addifnew. This will add a new attribute only if it doesn't exist in the current entry. We can't compare values because the value we are adding is automatically generated. ticket 1177
* Entitlement registration.Endi S. Dewata2011-04-149-52/+638
| | | | | | The entitlement facet will show buttons according to the entitlement status. If it's unregistered, the facet will show a Register button. If it's registered, the facet will show a Consume button.
* Merged IPA.cmd() into IPA.command().Endi S. Dewata2011-04-1318-429/+572
| | | | | | | The IPA.cmd() has been merged into IPA.command(). All invocations and test cases have been converted. Ticket #988
* Fix lint false positives.Jan Cholasta2011-04-131-1/+1
|
* Fix traceback in ipa-nis-manage.Rob Crittenden2011-04-113-3/+10
| | | | | | | | | | | | | | | | | The root user cannot use ldapi because of the autobind configuration. Fall back to a standard GSSAPI sasl bind if the external bind fails. With --ldapi a regular user may be trying this as well, catch that and report a reasonable error message. This also gives priority to the DM password if it is passed in. Also require the user be root to run the ipa-nis-manage command. We enable/disable and start/stop services which need to be done as root. Add a new option to ipa-ldap-updater to prompt for the DM password. Remove restriction to be run as root except when doing an upgrade. Ticket 1157
* Updated Selenium tests.Endi S. Dewata2011-04-1187-350/+1285
| | | | The Selenium tests have been updated to improve robustness.
* Entitlements.Endi S. Dewata2011-04-1110-2/+349
|
* Refactored search facet.Endi S. Dewata2011-04-111-185/+185
| | | | | To simplify customization, the add(), remove(), and refresh() methods have been moved from IPA.search_widget into IPA.search_facet.
* Refactored builder interface.Endi S. Dewata2011-04-119-68/+103
| | | | | | | The IPA.entity_builder has been modified to take a 'factory' parameter in custom facet's and custom dialog's spec. The IPA.dialog has been modified to take an array of fields in the spec. The IPA.search_facet has been modified to take an array of columns in the spec.
* Refactored action panel and client area.Endi S. Dewata2011-04-118-50/+56
| | | | | | | To improve code readability and extensibility the containers for action panel and client area are now created in IPA.entity.setup(). The 'client area' has been renamed into 'content'. The IPA.facet.create() has been renamed to IPA.facet.create_content().
* Add memberHost and memberUser to default indexesJr Aquino2011-04-081-0/+16
| | | | https://fedorahosted.org/freeipa/ticket/1138
* Fix typo in ipa-server-install.Jan Cholasta2011-04-081-1/+1
|
* Fix ORDERING in some attributetypes and remove other unnecessary elements.Rob Crittenden2011-04-053-20/+43
| | | | | | | | | | | Looking at the schema in 60basev2.ldif there were many attributes that did not have an ORDERING matching rule specified correctly. There were also a number of attributeTypes that should have been just SUP distinguishedName that had a combination of SUP, SYNTAX, ORDERING, etc. This requires 389-ds-base-1.2.8.0-1+ ticket 1153
* Added functional test runner.Endi S. Dewata2011-04-055-7/+14067
|
* Initial Selenium test cases.Endi S. Dewata2011-03-31106-0/+6324
| | | | http://www.freeipa.org/page/Selenium
* code review fixesAdam Young2011-03-3119-142/+124
| | | | this version includes using spec for detail_facets
* default all falseAdam Young2011-03-313-7/+15
| | | | no longer default to all: true for searches, only specify it for user searches
* define entities using builder and more declarative syntaxAdam Young2011-03-3129-2692/+1769
| | | | | | merged hbac and sudo in to single files associaton facet and table supports linking
* update metadata with label changesAdam Young2011-03-311-195/+234
|
* Add note about ipa-dns-install to ipa-server-install man page.Jan Cholasta2011-03-311-0/+7
| | | | ticket 1082
* Allow a client to enroll using principal when the host has a OTPRob Crittenden2011-03-301-0/+18
| | | | | | | | | If the host has a one-time password but krbPrincipalName wasn't set yet then the enrollment would fail because writing the principal is not allowed. This creates an ACI that only lets it be written if it is not already set. ticket 1075
* Replica installation fails for self-signed serverMartin Kosek2011-03-301-1/+2
| | | | | | | When IPA server was configured as self-signed (--selfsign option) the replica always failed to install. https://fedorahosted.org/freeipa/ticket/1122
* Fixed undefined label in permission adder dialog box.Endi S. Dewata2011-03-291-0/+3
| | | | | | | The IPA.rights_widget was fixed to invoke the base init() method to load the i18n labels properly. Ticket 1113
* Automatically update IPA LDAP on rpm upgradesRob Crittenden2011-03-212-19/+43
| | | | | | | | | | | | | | | Re-enable ldapi code in ipa-ldap-updater and remove the searchbase restriction when run in --upgrade mode. This allows us to autobind giving root Directory Manager powers. This also: * corrects the ipa-ldap-updater man page * remove automatic --realm, --server, --domain options * handle upgrade errors properly * saves a copy of dse.ldif before we change it so it can be recovered * fixes an error discovered by pylint ticket 1087
* pwpolicy priorityAdam Young2011-03-181-2/+3
| | | | | | Priority is now a required field in order to add a new password policy. Thus, not having the field present means we cannot create one. https://fedorahosted.org/freeipa/ticket/1102
* Update translation file (ipa.pot).Pavel Zuna2011-03-181-955/+6091
|
* Fix SELinux errors caused by enabling TLS on dogtag 389-ds instance.Rob Crittenden2011-03-153-28/+20
| | | | | | | | | | | | | | | | This fixes 2 AVCS: * One because we are enabling port 7390 because an SSL port must be defined to use TLS On 7389. * We were symlinking to the main IPA 389-ds NSS certificate databsae. Instead generate a separate NSS database and certificate and have certmonger track it separately I also noticed some variable inconsistency in cainstance.py. Everywhere else we use self.fqdn and that was using self.host_name. I found it confusing so I fixed it. ticket 1085
* Use TLS for dogtag replication agreements.Rob Crittenden2011-03-102-3/+39
| | | | | | | | Configure the dogtag 389-ds instance with SSL so we can enable TLS for the dogtag replication agreements. The NSS database we use is a symbolic link to the IPA 389-ds instance. ticket 1060
* Fixed self service page.Endi S. Dewata2011-03-083-8/+31
| | | | | Collaborated with ayoung to fix this problem: https://fedorahosted.org/freeipa/ticket/1070
* chkconfig the ipa service off when it is uninstalled.Rob Crittenden2011-03-081-0/+2
| | | | ticket 1056
* Improve error handling and return status codes in ipactlMartin Kosek2011-03-071-30/+89
| | | | | | | | | | | | | | | | | | | | | | | | | | There are cases when ipactl returns success even when it fails. Plus, when the error really is detected the status codes are not LSB compliant. This may result in consequent issues. This patch improves error handling in ipactl and adds LSB compliant status codes. Namely: 0 program is running or service is OK 3 program is not running 4 program or service status is unknown for "status" action. Status code 4 is issued when IPA is not configured to distinguish this state from not running IPA. For other actions, the following non-zero status codes are implemented: 1 generic or unspecified error 2 invalid or excess argument(s) 4 user had insufficient privilege 6 program is not configured https://fedorahosted.org/freeipa/ticket/1055
* Fixed memory leak caused by certificate dialogs.Endi S. Dewata2011-03-072-252/+204
| | | | Ticket 1054
* Fixed memory leak caused by IPA.error_dialog.Endi S. Dewata2011-03-062-27/+29
| | | | Ticket 1054
* Fixed memory leak caused by DNS record deleter dialog.Endi S. Dewata2011-03-041-56/+74
| | | | Ticket 1054
* Fixed memory leak caused by DNS record adder dialog.Endi S. Dewata2011-03-041-48/+62
| | | | Ticket 1054
* Fixed memory leak caused by reset password dialog.Endi S. Dewata2011-03-041-42/+75
| | | | Ticket 1054
* Fixed memory leak caused by is_dirty dialogs.Endi S. Dewata2011-03-042-27/+26
| | | | Ticket 1054
* Fixed memory leak caused by IPA.dialog.Endi S. Dewata2011-03-041-6/+8
| | | | Ticket 1054
* Fixed host enrollment timeEndi S. Dewata2011-03-041-6/+6
| | | | | | | | The month in krblastpwdchange (LDAP Generalized Time) is 1-based but the month in JavaScript Date.setUTCFullYear() is 0-based so it needs a conversion. Ticket 1053
* Skip DNS validation checks if we're setting up DNS in ipa-server-install.Rob Crittenden2011-03-041-0/+4
| | | | | | | If we're going to be authoritative ourselves don't bother with what other DNS servers think. ticket 1036
* type in default textAdam Young2011-03-031-1/+1
|
* Use ldapi: instead of unsecured ldap: in ipa core tools.Pavel Zuna2011-03-038-35/+35
| | | | | | The patch also corrects exception handling in some of the tools. Fix #874
* Need to restart the dogtag 388-ds instance before using it.Rob Crittenden2011-03-031-0/+17
| | | | | | | | | | | Restart the 389-ds instance to ensure all schema is loaded that dogtag may have installed as files. According to bug https://bugzilla.redhat.com/show_bug.cgi?id=680984 this it is only needed on clones. ticket 1024
* Inconsistent sysrestore file handling by IPA server installerMartin Kosek2011-03-031-2/+2
| | | | | | | | | | | | IPA server/replica uninstallation may fail when it tries to restore a Directory server configuration file in sysrestore directory, which was already restored before. The problem is in Directory Server uninstaller which uses and modifies its own image of sysrestore directory state instead of using the common uninstaller image. https://fedorahosted.org/freeipa/ticket/1026
* fix truncated messageAdam Young2011-03-031-2/+7
|
* IPA replica/server install does not check for a clientMartin Kosek2011-03-032-0/+10
| | | | | | | | | | | When IPA replica or server is configured it does not check for possibly installed client. This will cause the installation to fail in the very end. This patch adds a check for already configured client and suggests removing it before server/replica installation. https://fedorahosted.org/freeipa/ticket/1002
* Use modified entity find commands for associationsAdam Young2011-03-023-35/+28
| | | | | | https://fedorahosted.org/freeipa/ticket/1011 Does not completely fix the problem in the ticket, but it does mitigate the failure.
* Save changes before modifying association.Endi S. Dewata2011-03-024-7/+45
| | | | | | | | | | | In a details page, usually any changes done to the fields will not be applied until the user clicks the Update button. However, if the page contains an association table, any addition/deletion to the table will be applied immediately. To avoid any confusion, the user is now required to save or reset all changes to the page before modifying the association. A dialog box will appear if the page contains any unsaved changes.
* Fixed attribute for SUDO command group membership.Endi S. Dewata2011-03-021-5/+2
| | | | | The correct attribute name for SUDO command group membership is memberof_sudocmdgroup and it contains the group name instead of dn.
* Store list of non-master replicas in DIT and provide way to list themSimo Sorce2011-03-024-30/+96
| | | | Fixes: https://fedorahosted.org/freeipa/ticket/1007
generated by cgit (git 2.34.1) at 2024-06-04 12:58:15 +0000