summaryrefslogtreecommitdiffstats
path: root/ipa-python/rpcclient.py
Commit message (Collapse)AuthorAgeFilesLines
* Remove some duplicated code that was moved to ipaserver and use it Remove ↵Rob Crittenden2009-02-061-906/+0
| | | | some unused files
* Ignore GSS exception when iterating through server list. Fixes: 459864Martin Nagy2008-09-111-0/+2
|
* Add tool to manage IPA Search and User policyRob Crittenden2008-08-201-1/+1
| | | | 448624, 448625
* Refine our web space some more so that everything we reference is in /ipaRob Crittenden2008-05-071-1/+1
| | | | | | | | | | | | | | | UI: /ipa/ui XML-RPC: /ipa/xml errors: /ipa/errors config: /ipa/config I had to hardcode that URI into the CSS pages but TurboGears handles the rest of the translations with tg.url(). Added a version to ipa.conf and ipa-rewrite.conf so we can update them in the future if needed with ipa-upgradeconfig 440443
* Fix the client-side search size limit.Rob Crittenden2008-04-251-10/+10
| | | | | | | | | | | | | | I've changed the variable name searchlimit to sizelimit to match the name in python-ldap (and hopefully therefore be more readable). The big change was changing the default value from 0 to -1. As 0 we were never using the value from cn=ipaconfig python-ldap expects this to be an int type In the UI sizelimit was hardcoded at 0 for users 439880
* Add --verbose option so the HTTP headers and XML request/response can be seen.Rob Crittenden2008-04-251-3/+7
| | | | | | | Also re-do the way modules are imported. I was attemping to have ^C handled gracefully but the way I did it could mask other problems. 443987
* When getting members let user indicate what type of member they want.Rob Crittenden2008-03-271-2/+2
| | | | | | | | | | The memberOf attribute includes members that are directly in the group via the "member" attribute and those that are included as a result of being in a group that is in the group. The UI needs to be able to distinguish between the two. 438706
* Re-root the IPA web UI to /ipa and the XML-RPC interface to /ipaxml.Rob Crittenden2008-03-241-1/+1
| | | | 438021
* Require that service principals resolve to a DNS A record.Rob Crittenden2008-02-261-2/+2
| | | | | | There is a --force option for those who know what they are doing. 433483
* Add failover to the XML-RPC clientRob Crittenden2008-02-221-3/+22
| | | | 433506
* Command-line utility to manage password policyRob Crittenden2008-02-251-1/+1
| | | | 432814
* Set the license uniformly to GPLv2 only.Rob Crittenden2008-02-041-1/+1
|
* Fix issues reported by rpmlint.Rob Crittenden2008-01-181-3/+1
| | | | | | | | | | | | | | - Removing shebangs (#!) from a bunch of python libraries - Don't use a variable name in init scripts for the lock file - Keep the init script name consistent with the binary name, so renamed ipa-kpasswd.init to ipa_kpasswd.init - Add status option to the init scripts - Move most python scripts out of /usr/share/ipa and into the python site-packages directories (ipaserver and ipaclient) - Remove unnecessary sys.path.append("/usr/share/ipa") - Fix the license string in the spec files - Rename ipa-webgui to ipa_webgui everywhere - Fix a couple of issues reported by pychecker in ipa-python
* Service principal deletionRob Crittenden2008-01-111-0/+12
|
* Add function to retrieve a short list of attributes to make ipa-adddelegationRob Crittenden2008-01-041-0/+15
| | | | easier to use.
* Make the old entry option in update_*, check for empty parameters andRob Crittenden2007-12-111-27/+8
| | | | fix some problems reported by pychecker.
* Merge.Karl MacMillan2007-12-111-0/+18
|\
| * Add UI for service principal creation and keytab retrievalRob Crittenden2007-12-051-0/+18
| |
* | merged radius work with latest mainline tipJohn Dennis2007-11-281-11/+134
|\|
| * Add xml-rpc interface for getting keytabs.Karl MacMillan2007-11-211-0/+24
| | | | | | | | Warning: this lacks any sort of authorization.
| * Enable group inactivation by using the Class of Service plugin.Rob Crittenden2007-11-201-3/+45
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This adds 2 new groups: activated and inactivated. If you, or a group you are a member of, is in inactivated then you are too. If you, or a group you are a member of, is in the activated group, then you are too. In a fight between activated and inactivated, activated wins. The DNs for doing this matching is case and white space sensitive. The goal is to never have to actually set nsAccountLock in a user directly but move them between these groups. We need to decide where in the CLI this will happen. Right it is split between ipa-deluser and ipa-usermod. To inactivate groups for now just add the group to inactivate or active.
| * Implement the password policy UI and finish IPA policy UIRob Crittenden2007-11-161-8/+65
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This includes a default password policy Custom fields are now read from LDAP. The format is a list of dicts with keys: label, field, required. The LDAP-based configuration now specifies: ipaUserSearchFields: uid,givenName,sn,telephoneNumber,ou,title ipaGroupSearchFields: cn,description ipaSearchTimeLimit: 2 ipaSearchRecordsLimit: 0 ipaCustomFields: ipaHomesRootDir: /home ipaDefaultLoginShell: /bin/sh ipaDefaultPrimaryGroup: ipausers ipaMaxUsernameLength: 8 ipaPwdExpAdvNotify: 4 This could use some optimization.
* | add command line utilites for radius profilesJohn Dennis2007-11-261-4/+73
| |
* | Add radius profile implementations:John Dennis2007-11-211-10/+14
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | get_radius_profile_by_uid add_radius_profile update_radius_profile delete_radius_profile find_radius_profiles Rewrite command line arg handling, now support pair entry, interactive mode with auto completion, reading pairs from a file, better handling of mandatory values, better help, long arg names now match attribute name in pairs Establish mappings for all attributes and names used in clients and profiles Add notion of containers to radius clients and profiles in LDAP Move common code, variables, constants, and strings into the files radius_client.py, radius_util.py, ipautil.py to eliminate redundant elements which could get out of sync if modified and to provide access to other code which might benefit from using these items in the future. Add utility functions: format_list() parse_key_value_pairs() Add utility class: AttributeValueCompleter Unify attribute usage in radius ldap schema
* | add ipa-findradiusclient searchJohn Dennis2007-11-141-0/+14
| |
* | radius client modify and delete workJohn Dennis2007-11-141-0/+41
| |
* | ipa-addradiusclient now workingJohn Dennis2007-11-131-0/+13
|/
* Rename memberOf to group_members in xml-rpc interface.Karl MacMillan2007-10-311-2/+2
|
* Add memberOf API call to the XML-RPC interfaceRob Crittenden2007-10-301-0/+17
| | | | Make find-groups use memberOf to have a prettier dispaly of members
* Add delete user and group to webgui.Kevin McCarthy2007-10-231-3/+3
| | | | NOTE: this doesn't handle referential integrity.
* Add an LDAP attribute -> label mapping function to XML-RPC layerRob Crittenden2007-10-221-0/+13
| | | | Move some ACI functions around in preparation for cli delegation
* Finish the email autosuggest.Kevin McCarthy2007-10-181-1/+17
| | | | | For now I've added a new API call. The field-specific searching is a ways off.
* Require SSL for the XML-RPC interfaceRob Crittenden2007-10-191-1/+1
|
* Fix build issues by combining patches submitted by Michael Gregg andRob Crittenden2007-10-171-1/+0
| | | | | Karl MacMillan Remove #!/usr/bin/python from many files to quiet rpmlint
* Creates an update_entry api call, aliases update_user and update_group to it.Kevin McCarthy2007-10-151-0/+14
|
* Adds delegation listing and creation to the GUI.Kevin McCarthy2007-10-121-0/+17
|
* Combine get_user/group by dn/cn into get_entry_by_cn/dn.Kevin McCarthy2007-10-091-40/+27
| | | | Also a couple double-escaping fixes I missed in the last patch.
* Trickle the group_cn to group_dn down the layers. Fix controller calls.Kevin McCarthy2007-10-031-16/+16
|
* Rely more on kerberos.Simo Sorce2007-10-011-3/+19
| | | | | | | Don't read ipa.conf to get the realm, the kerberos libs do that for you. Use the krbPrincipalName to change passwords Make it possible to specify the principal at user creation. Mail is not a required attribute so far, don't require it.
* Add group management to the user edit page.Kevin McCarthy2007-09-281-0/+30
| | | | Added a couple more API calls to make the inverse operations easier.
* Make timelimit a parameter to the find methods.Kevin McCarthy2007-09-271-4/+4
|
* Adds methods to manipulate groups by dns.Kevin McCarthy2007-09-261-25/+71
| | | | | Renamed some of the user_group parameters to be self-evident. Binary wrapping isn't necessary on strings, so removed from xmlrpc calls.
* Adds manager and direct reports to usershow page.Kevin McCarthy2007-09-251-0/+17
| | | | Fixes a bug with the group by member where is wasn't trapping not found errors.
* Show the list of groups a user belongs to.Kevin McCarthy2007-09-251-0/+17
|
* Merge conflicts between rob and kevin patchesSimo Sorce2007-09-201-4/+4
|\
| * Implement asynchronous search for groups.Kevin McCarthy2007-09-191-2/+2
| | | | | | | | Use the filter generation code to search on multiple fields.
| * Add client-side search limit parameter for user search.Kevin McCarthy2007-09-181-2/+2
| | | | | | | | | | Limit editgroup user ajax search. Minor UI cleanup for editgroup.
* | Add function to allow user's to set/reset their kerberos passwordrcritten@redhat.com2007-09-111-0/+16
|/ | | | Remove some unused calls to retrieve the current realm
* Change user search to be asynchronous.Kevin McCarthy2007-08-281-2/+3
| | | | | | This way it returns results even if the search times out. The find_users() search now returns a counter as the first result, which is set to -1 if the results are partial.
* Implement delete users and groupsrcritten@redhat.com2007-08-281-0/+41
| | | | | | Implement adding a group to a group Some other small fixups Add new cmd-line tool ipa-delgroup
generated by cgit (git 2.34.1) at 2024-11-12 13:41:33 +0000