Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Let DS encode the password, this will allow IPA -> AD password | Simo Sorce | 2008-06-11 | 1 | -10/+4 |
| | | | | synchronization to work again. | ||||
* | Ensure that the realm name is upper-case. | Rob Crittenden | 2008-06-09 | 1 | -3/+4 |
| | | | | 449182 | ||||
* | Ignore empty values when converting a multi-valued form field back to a ↵ | Rob Crittenden | 2008-06-09 | 1 | -1/+2 |
| | | | | | | list. This will prevent validation errors when validate.UniqueList() is executed. 449785 | ||||
* | When an LDAP connection fails, display the host one is trying to connect to. | Rob Crittenden | 2008-06-09 | 1 | -2/+4 |
| | | | | 450111 | ||||
* | Add our own SIGTERM handler so we can do clean shutdowns. | Rob Crittenden | 2008-06-09 | 1 | -2/+13 |
| | | | | | | Also fix foreground mode. 450211 | ||||
* | Make it clear which packages are being configured and which aren't. | Rob Crittenden | 2008-06-09 | 1 | -3/+15 |
| | | | | 450175 | ||||
* | Add sbin_t directory read permissions | Rob Crittenden | 2008-06-05 | 1 | -0/+1 |
| | | | | 449760 | ||||
* | Fix typo | Rob Crittenden | 2008-06-05 | 1 | -1/+1 |
| | | | | 450077 | ||||
* | Fix import for version | Rob Crittenden | 2008-06-04 | 2 | -2/+2 |
| | |||||
* | Add -p/--password option so the DM password can be passed on the command-line. | Rob Crittenden | 2008-06-04 | 2 | -5/+13 |
| | | | | | | The import for version moved from ipaserver to ipa, fix that as well. 449858 | ||||
* | Don't make the search criteria lower-case so one can do case-sensitive ↵ | Rob Crittenden | 2008-06-04 | 1 | -1/+0 |
| | | | | | | searches (such as looking for HTTP principals) 449975 | ||||
* | Fix issue of double logging in ipa_error.log. | Rob Crittenden | 2008-06-03 | 6 | -4/+60 |
| | | | | | | | | | | | We open the log in ipa_webgui and this was being inherited by TurboGears which uses the same log so everything was getting logged twice. Shut down the log in ipa_webgui at the last possible moment. This will not catch configuration errors. Add a Not Found template. Only print a traceback on 500 errors. | ||||
* | Move version.py to the common ipa directory instead of being server-based so ↵ | Rob Crittenden | 2008-06-03 | 4 | -30/+4 |
| | | | | | | it can be used by the client tool. Fix the client tool imports to fail more gracefully. | ||||
* | Don't prompt regarding previous DS installations in unattended mode. | Rob Crittenden | 2008-05-30 | 1 | -2/+4 |
| | | | | 449150 | ||||
* | Fedora DS 1.1.1 exposes a public task api. In order for ipa-1-0 to build ↵ | Rich Megginson | 2008-05-30 | 1 | -47/+90 |
| | | | | against this, ipa-memberof.c needs to be able to use the public api or the private one. | ||||
* | Make check_inst() a standalone function in bindinstance. | Rob Crittenden | 2008-05-30 | 2 | -10/+10 |
| | | | | | | | | | | | | | When an install instance is created that contains a pointer to a sysrestore point it loads in the current configuration when instantiated. If an instance is instantiated but not used then changes may occur to the system state that it is unaware of. So one needs to take care in the order that things are done to avoid losing information. When bind was setup it was overwriting all data in sysrestore.state and leaving just a [named] section. This caused problems at uninstall. 448173 | ||||
* | Fix typo in log statement | Rob Crittenden | 2008-05-29 | 1 | -1/+1 |
| | | | | 448948 | ||||
* | Make ipa_kpasswd listen on each single interface explicitly | Simo Sorce | 2008-05-29 | 1 | -66/+173 |
| | | | | | instead of 0.0.0.0, this allows us to reply to a UDP request by using the right source address to build the kerberos reply. | ||||
* | Use openldap libraries by default as mozldap libs seem to break | Simo Sorce | 2008-05-29 | 1 | -1/+1 |
| | | | | ldap_extended_operation() somehow and ipa_kpasswd stops working | ||||
* | Fix crash bug in ipa_kpasswd | Simo Sorce | 2008-05-29 | 1 | -2/+3 |
| | |||||
* | Fix the case where domain != lower(REALM) | Simo Sorce | 2008-05-29 | 3 | -9/+12 |
| | | | | | add the domain to the ipa.conf file for apps that need to know This should fix a bug in the replica setup | ||||
* | Set default logging level to INFO (still logs to Apache) | Rob Crittenden | 2008-05-28 | 2 | -24/+63 |
| | | | | Add function entry log for the core IPA XML-RPC functions. | ||||
* | Use a value that is explicitly 64bit on all architectures | Simo Sorce | 2008-05-23 | 1 | -13/+13 |
| | |||||
* | Move admin into cn=users,cn=accounts | Simo Sorce | 2008-05-23 | 3 | -5/+5 |
| | | | | | | | After some deep thinking I think the advantages of keeping all posix enabled user accounts under cn=users,cn=accounts overweight a perceived better protection of the admin account by keeping it in a separate tree. | ||||
* | Don't make the rpm %post fail just because the server has never been | Simo Sorce | 2008-05-22 | 1 | -1/+1 |
| | | | | | configured before (and therefore there is nothing to upgrade, just let it spit out warnings for admins that actually check whats going on. | ||||
* | Fix up function return values so we can return 1 on an installation error. | Rob Crittenden | 2008-05-22 | 1 | -14/+13 |
| | | | | 447973 | ||||
* | Move non-user-configurable configuration elements to TurboGears app.cfg file. | Rob Crittenden | 2008-05-22 | 3 | -31/+58 |
| | | | | 432908 | ||||
* | Fix testing for asprintf errors, we need to test the return value as | Simo Sorce | 2008-05-22 | 1 | -50/+41 |
| | | | | | | | per standard the buffer status is undefined. While there also introduce a new spearate variable to return the final error and keep using ret for local error checks. This avoid potentially overwriting the correct return value when checking for asprintf ... | ||||
* | Only ask the user to install bind. | Martin Nagy | 2008-05-22 | 1 | -1/+1 |
| | |||||
* | Change file mode of log files to 600. | Martin Nagy | 2008-05-20 | 1 | -0/+2 |
| | | | | 446869 | ||||
* | Ensure hostnames are lower during installation and when adding service princs | Rob Crittenden | 2008-05-20 | 2 | -14/+30 |
| | | | | 447381 | ||||
* | Remove broken link for IE configuration and replace sample domain/realm. ↵ | Rob Crittenden | 2008-05-20 | 1 | -4/+7 |
| | | | | | | | | | | Also fix some HTML errors: missing DOCTYPE, title, head. The web page actually comes up as a link in a search on Microsoft's site but the content is gone. It is possible it will come back at some point, who knows. 447445 | ||||
* | Add validators.py to the list of files. | Rob Crittenden | 2008-05-20 | 1 | -0/+1 |
| | | | | 445286 | ||||
* | Do uniqueness check on phone numbers and cn entered via the UI. | Rob Crittenden | 2008-05-20 | 3 | -4/+80 |
| | | | | 445286 | ||||
* | Don't pass the Directory Manager password on the command-line to ldapmodify. | Rob Crittenden | 2008-05-19 | 2 | -8/+23 |
| | | | | 446865 | ||||
* | Use split instead of find as split does not fail to provide a complete | Simo Sorce | 2008-05-15 | 3 | -3/+3 |
| | | | | component if no '.' is found. | ||||
* | detect failure to write ipa_kpasswd.pid file | Jim Meyering | 2008-05-15 | 1 | -7/+12 |
| | | | | | * ipa_kpasswd.c (main): Detect not just open failure, but also any write failure. | ||||
* | remove useless if-before-free tests | Jim Meyering | 2008-05-15 | 2 | -28/+16 |
| | | | | | | | | | | | | I've been on a crusade (;-) to remove useless if-before-free tests, so ran a script that spotted some here. I think I removed the first batch (without braces) automatically, then manually removed the ones with curly braces around the free statements. You may well have doubts about the portability of removing those tests, but as long as you don't care about SunOS4 or earlier, you'll be fine. I've done similar things for e.g., coreutils, glibc, and git, and have had no problems. | ||||
* | * ipa_pwd_extop.c (encrypt_encode_key): Handle malloc failure. | Jim Meyering | 2008-05-15 | 1 | -0/+5 |
| | |||||
* | If there is an error we need to send back a reply ourselves. | Simo Sorce | 2008-05-15 | 1 | -2/+11 |
| | | | | Return also an intelligible error message. | ||||
* | For some unknown reason the sort control returns values sorted in reverse. | Simo Sorce | 2008-05-15 | 1 | -1/+3 |
| | | | | Ask for inverse order to get them straight ... | ||||
* | Implement checks to make sure we are not assigning a number that is in use. | Simo Sorce | 2008-05-15 | 1 | -181/+455 |
| | | | | | | Change config to support a maximum value so that ranges can be defined. Add stubs to reach out and ask to swap in new ranges and notify that new chuncks are needed/used. | ||||
* | Don't ask the user again if he wants to replace bind configuration files if ↵ | Martin Nagy | 2008-05-14 | 1 | -10/+1 |
| | | | | | | he specified --setup-bind. 430090 | ||||
* | Fix typo, /etc/resolve.conf -> /etc/resolv.conf. | Martin Nagy | 2008-05-14 | 1 | -10/+10 |
| | | | | 444660 | ||||
* | Make sure all services are stopped during uninstall. | Rob Crittenden | 2008-05-14 | 1 | -1/+3 |
| | | | | | | | | | We were just shutting down the KDC if it had been started prior to IPA installation. We need to stop it in all cases. And we should restart nscd as it may have made an LDAP connection. 440322 | ||||
* | Enforce the maximum username length set by IPA Policy | Rob Crittenden | 2008-05-14 | 1 | -0/+25 |
| | | | | 439891 | ||||
* | Do a more thorough job of removing an existing DS instance. | Rob Crittenden | 2008-05-13 | 1 | -0/+4 |
| | | | | | | Add /usr/lib/dirsrv/slapd-INSTANCE to the list of directories removed. 442753 | ||||
* | The admin user doesn't have the inetorgperson objectclass so don't have a ↵ | Rob Crittenden | 2008-05-13 | 1 | -0/+10 |
| | | | | | | | | | givenname attribute. The UI is currently hardcoded to require "first name" which renders the admin user uneditable via the UI. This is a hack that will allow admin to be edited, assuming that one doesn't try to add a firstname field. 440548 | ||||
* | Display information on how to uninstall a partially installed server. | Rob Crittenden | 2008-05-09 | 1 | -4/+10 |
| | | | | | | | This may have failed either because the user pressed ^C or something failed during installation. 442454 | ||||
* | Include information on where to look if a hostname resolves to localhost. | Rob Crittenden | 2008-05-09 | 1 | -1/+1 |
| | | | | 442812 |