Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Merge. | Karl MacMillan | 2007-12-11 | 6 | -43/+45 |
|\ | |||||
| * | Rework input validation to more closely match what we require in the UI | Rob Crittenden | 2007-12-07 | 3 | -40/+40 |
| | | |||||
| * | Fix delegation in the UI and add a missing aci that allows writes. | Rob Crittenden | 2007-12-07 | 1 | -1/+3 |
| | | | | | | | | Make ipa-deldelegation more user-friendly. | ||||
| * | Fix spelling | Rob Crittenden | 2007-12-10 | 2 | -2/+2 |
| | | |||||
* | | Merge. | Karl MacMillan | 2007-12-11 | 2 | -0/+6 |
|\| | |||||
| * | Notify the user when the search results have been truncated | Rob Crittenden | 2007-12-05 | 2 | -0/+6 |
| | | |||||
* | | merge | John Dennis | 2007-12-04 | 9 | -28/+156 |
|\| | |||||
| * | Compatibility changes to work on RHEL 5 with python 2.4 | rcritten@redhat.com | 2007-11-30 | 2 | -2/+2 |
| | | |||||
| * | delete_group() takes a DN, not a CN. Also do slightly better error reporting. | Rob Crittenden | 2007-11-30 | 1 | -1/+13 |
| | | |||||
| * | Add utility to lock user accounts. Remove lock capability from ipa-deluser | Rob Crittenden | 2007-11-26 | 6 | -25/+141 |
| | | | | | | | | | | Fix bootstrap.ldif to add new Class of Service entries properly Include some man pages that weren't being installed | ||||
* | | add user profile command line arg to all radius | John Dennis | 2007-11-28 | 3 | -2/+21 |
| | | | | | | | | | | | | | | | | profile command line tools to select between shared and per user profiles modify AttributeValueCompleter so default values prefer previously entered values in editing session | ||||
* | | merged radius work with latest mainline tip | John Dennis | 2007-11-28 | 20 | -71/+392 |
|\| | |||||
| * | Add xml-rpc interface for getting keytabs. | Karl MacMillan | 2007-11-21 | 2 | -0/+84 |
| | | | | | | | | Warning: this lacks any sort of authorization. | ||||
| * | Move packages to ipa from freeipa. | Karl MacMillan | 2007-11-21 | 2 | -8/+14 |
| | | |||||
| * | Bump the version numbers for release. Also remove | Karl MacMillan | 2007-11-21 | 1 | -1/+1 |
| | | | | | | | | | | | | specific version check on freeradius. Packages aren't available and the freeradius support isn't ready anyway. | ||||
| * | Enable group inactivation by using the Class of Service plugin. | Rob Crittenden | 2007-11-20 | 2 | -7/+20 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This adds 2 new groups: activated and inactivated. If you, or a group you are a member of, is in inactivated then you are too. If you, or a group you are a member of, is in the activated group, then you are too. In a fight between activated and inactivated, activated wins. The DNs for doing this matching is case and white space sensitive. The goal is to never have to actually set nsAccountLock in a user directly but move them between these groups. We need to decide where in the CLI this will happen. Right it is split between ipa-deluser and ipa-usermod. To inactivate groups for now just add the group to inactivate or active. | ||||
| * | Implement the password policy UI and finish IPA policy UI | Rob Crittenden | 2007-11-16 | 1 | -2/+0 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This includes a default password policy Custom fields are now read from LDAP. The format is a list of dicts with keys: label, field, required. The LDAP-based configuration now specifies: ipaUserSearchFields: uid,givenName,sn,telephoneNumber,ou,title ipaGroupSearchFields: cn,description ipaSearchTimeLimit: 2 ipaSearchRecordsLimit: 0 ipaCustomFields: ipaHomesRootDir: /home ipaDefaultLoginShell: /bin/sh ipaDefaultPrimaryGroup: ipausers ipaMaxUsernameLength: 8 ipaPwdExpAdvNotify: 4 This could use some optimization. | ||||
| * | Completely remove attributes when delattr argument in ipa-groupmod | Rob Crittenden | 2007-11-15 | 1 | -7/+15 |
| | | |||||
| * | Completely remove attributes when delattr argument | Rob Crittenden | 2007-11-15 | 1 | -3/+10 |
| | | |||||
| * | Use same labels as UI for ipa-finduser and ipa-findgroup | Rob Crittenden | 2007-11-15 | 2 | -5/+29 |
| | | | | | | | | Add -a option to ipa-findgroup to print all attributes | ||||
| * | If unable to connect to the XML-RPC server print a more useful error msg. | Rob Crittenden | 2007-11-15 | 13 | -20/+96 |
| | | |||||
| * | Allow a user or group to change an attribute in its RDN | Rob Crittenden | 2007-11-12 | 4 | -15/+86 |
| | | | | | | | | | | Add secretary to the list of indexes otherwise RDN changing could be slow Port --addattr, --setattr and --delattr from usermod to groupmod | ||||
| * | Add the capability to completely delete a user from the database. The | Rob Crittenden | 2007-11-09 | 2 | -6/+19 |
| | | | | | | | | default remains to inactivate them. | ||||
| * | Require uniqueness in the name/comment field of delegations | Rob Crittenden | 2007-11-09 | 2 | -1/+22 |
| | | | | | | | | | | | | Fix error reporting in the UI to include the detailed message Sort delegations by name when displaying them Update the name field from "Name" to "Delegation Name" | ||||
* | | bug fixes | John Dennis | 2007-11-27 | 4 | -14/+11 |
| | | |||||
* | | checkpoint bug fixing and cleanup of command line radius tools | John Dennis | 2007-11-27 | 4 | -124/+185 |
| | | |||||
* | | do a better job of handling attribute deletion | John Dennis | 2007-11-27 | 2 | -59/+42 |
| | | |||||
* | | checkpoint work to add attribute deletion | John Dennis | 2007-11-27 | 1 | -84/+164 |
| | | |||||
* | | add parse_items(), read_items_file() | John Dennis | 2007-11-26 | 4 | -4/+4 |
| | | | | | | | | move read_pairs_file() to ipautil | ||||
* | | add command line utilites for radius profiles | John Dennis | 2007-11-26 | 5 | -0/+577 |
| | | |||||
* | | remove radius_client.py, move contents to radius_util.py | John Dennis | 2007-11-26 | 4 | -10/+6 |
| | | |||||
* | | checkpoint radius client add,modify,find,del working, command line args ↵ | John Dennis | 2007-11-26 | 3 | -1/+3 |
| | | | | | | | | handled correctly | ||||
* | | clean up attribute names | jdennis@VAIO | 2007-11-24 | 4 | -48/+50 |
| | | | | | | | | clean up command line args in ipa-delradiusclient | ||||
* | | clean up radius client command line tools | John Dennis | 2007-11-23 | 3 | -76/+137 |
| | | |||||
* | | Add radius profile implementations: | John Dennis | 2007-11-21 | 3 | -123/+179 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | get_radius_profile_by_uid add_radius_profile update_radius_profile delete_radius_profile find_radius_profiles Rewrite command line arg handling, now support pair entry, interactive mode with auto completion, reading pairs from a file, better handling of mandatory values, better help, long arg names now match attribute name in pairs Establish mappings for all attributes and names used in clients and profiles Add notion of containers to radius clients and profiles in LDAP Move common code, variables, constants, and strings into the files radius_client.py, radius_util.py, ipautil.py to eliminate redundant elements which could get out of sync if modified and to provide access to other code which might benefit from using these items in the future. Add utility functions: format_list() parse_key_value_pairs() Add utility class: AttributeValueCompleter Unify attribute usage in radius ldap schema | ||||
* | | map attrs to friendly name | John Dennis | 2007-11-14 | 1 | -3/+10 |
| | | |||||
* | | add ipa-findradiusclient search | John Dennis | 2007-11-14 | 2 | -0/+100 |
| | | |||||
* | | radius client modify and delete work | John Dennis | 2007-11-14 | 4 | -7/+220 |
| | | |||||
* | | move radius client utility code to common radius_client.py so it can be shared | John Dennis | 2007-11-13 | 1 | -98/+1 |
| | | |||||
* | | ipa-addradiusclient now working | John Dennis | 2007-11-13 | 1 | -8/+8 |
| | | |||||
* | | checkpoint radius client work | John Dennis | 2007-11-13 | 2 | -0/+249 |
|/ | |||||
* | Prevent gzip from requesting confirmation. | Karl MacMillan | 2007-11-05 | 1 | -2/+2 |
| | | | | | | | The current manpage installation gzips the files in place and requests confirmation before overwriting existing files. Add -f to prevent prompting. We should consider not gzipping the files in place. | ||||
* | Use proper method of retrieving attributes | Rob Crittenden | 2007-11-01 | 1 | -1/+1 |
| | |||||
* | Bump versions for release. | Karl MacMillan | 2007-11-01 | 2 | -3/+9 |
| | |||||
* | Remove multi-value set/add in ipa-usermod. | Karl MacMillan | 2007-10-31 | 1 | -8/+7 |
| | | | | | Calling --add multiple times will accomplish the same thing without the need for handling splits on ",". | ||||
* | Rename memberOf to group_members in xml-rpc interface. | Karl MacMillan | 2007-10-31 | 1 | -1/+1 |
| | |||||
* | Allow set/add/del to be called multiple times. | Karl MacMillan | 2007-10-31 | 1 | -17/+34 |
| | | | | | | Allow the --set/add/del options to be called multiple times during the same invocation. Also add more robust checking of errors. | ||||
* | Add memberOf API call to the XML-RPC interface | Rob Crittenden | 2007-10-30 | 1 | -1/+15 |
| | | | | Make find-groups use memberOf to have a prettier dispaly of members | ||||
* | Allow adding, setting, deleting arbitrary attributes | Rob Crittenden | 2007-10-31 | 1 | -4/+30 |
| | |||||
* | Install the delegation tools | Rob Crittenden | 2007-10-29 | 1 | -0/+5 |
| |