summaryrefslogtreecommitdiffstats
path: root/ipa-server
Commit message (Collapse)AuthorAgeFilesLines
* Let DS encode the password, this will allow IPA -> AD passwordSimo Sorce2008-06-111-10/+4
| | | | synchronization to work again.
* Ensure that the realm name is upper-case.Rob Crittenden2008-06-091-3/+4
| | | | 449182
* Ignore empty values when converting a multi-valued form field back to a ↵Rob Crittenden2008-06-091-1/+2
| | | | | | list. This will prevent validation errors when validate.UniqueList() is executed. 449785
* When an LDAP connection fails, display the host one is trying to connect to.Rob Crittenden2008-06-091-2/+4
| | | | 450111
* Add our own SIGTERM handler so we can do clean shutdowns.Rob Crittenden2008-06-091-2/+13
| | | | | | Also fix foreground mode. 450211
* Make it clear which packages are being configured and which aren't.Rob Crittenden2008-06-091-3/+15
| | | | 450175
* Add sbin_t directory read permissionsRob Crittenden2008-06-051-0/+1
| | | | 449760
* Fix typoRob Crittenden2008-06-051-1/+1
| | | | 450077
* Fix import for versionRob Crittenden2008-06-042-2/+2
|
* Add -p/--password option so the DM password can be passed on the command-line.Rob Crittenden2008-06-042-5/+13
| | | | | | The import for version moved from ipaserver to ipa, fix that as well. 449858
* Don't make the search criteria lower-case so one can do case-sensitive ↵Rob Crittenden2008-06-041-1/+0
| | | | | | searches (such as looking for HTTP principals) 449975
* Fix issue of double logging in ipa_error.log.Rob Crittenden2008-06-036-4/+60
| | | | | | | | | | | We open the log in ipa_webgui and this was being inherited by TurboGears which uses the same log so everything was getting logged twice. Shut down the log in ipa_webgui at the last possible moment. This will not catch configuration errors. Add a Not Found template. Only print a traceback on 500 errors.
* Move version.py to the common ipa directory instead of being server-based so ↵Rob Crittenden2008-06-034-30/+4
| | | | | | it can be used by the client tool. Fix the client tool imports to fail more gracefully.
* Don't prompt regarding previous DS installations in unattended mode.Rob Crittenden2008-05-301-2/+4
| | | | 449150
* Fedora DS 1.1.1 exposes a public task api. In order for ipa-1-0 to build ↵Rich Megginson2008-05-301-47/+90
| | | | against this, ipa-memberof.c needs to be able to use the public api or the private one.
* Make check_inst() a standalone function in bindinstance.Rob Crittenden2008-05-302-10/+10
| | | | | | | | | | | | | When an install instance is created that contains a pointer to a sysrestore point it loads in the current configuration when instantiated. If an instance is instantiated but not used then changes may occur to the system state that it is unaware of. So one needs to take care in the order that things are done to avoid losing information. When bind was setup it was overwriting all data in sysrestore.state and leaving just a [named] section. This caused problems at uninstall. 448173
* Fix typo in log statementRob Crittenden2008-05-291-1/+1
| | | | 448948
* Make ipa_kpasswd listen on each single interface explicitlySimo Sorce2008-05-291-66/+173
| | | | | instead of 0.0.0.0, this allows us to reply to a UDP request by using the right source address to build the kerberos reply.
* Use openldap libraries by default as mozldap libs seem to breakSimo Sorce2008-05-291-1/+1
| | | | ldap_extended_operation() somehow and ipa_kpasswd stops working
* Fix crash bug in ipa_kpasswdSimo Sorce2008-05-291-2/+3
|
* Fix the case where domain != lower(REALM)Simo Sorce2008-05-293-9/+12
| | | | | add the domain to the ipa.conf file for apps that need to know This should fix a bug in the replica setup
* Set default logging level to INFO (still logs to Apache)Rob Crittenden2008-05-282-24/+63
| | | | Add function entry log for the core IPA XML-RPC functions.
* Use a value that is explicitly 64bit on all architecturesSimo Sorce2008-05-231-13/+13
|
* Move admin into cn=users,cn=accountsSimo Sorce2008-05-233-5/+5
| | | | | | | After some deep thinking I think the advantages of keeping all posix enabled user accounts under cn=users,cn=accounts overweight a perceived better protection of the admin account by keeping it in a separate tree.
* Don't make the rpm %post fail just because the server has never beenSimo Sorce2008-05-221-1/+1
| | | | | configured before (and therefore there is nothing to upgrade, just let it spit out warnings for admins that actually check whats going on.
* Fix up function return values so we can return 1 on an installation error.Rob Crittenden2008-05-221-14/+13
| | | | 447973
* Move non-user-configurable configuration elements to TurboGears app.cfg file.Rob Crittenden2008-05-223-31/+58
| | | | 432908
* Fix testing for asprintf errors, we need to test the return value asSimo Sorce2008-05-221-50/+41
| | | | | | | per standard the buffer status is undefined. While there also introduce a new spearate variable to return the final error and keep using ret for local error checks. This avoid potentially overwriting the correct return value when checking for asprintf ...
* Only ask the user to install bind.Martin Nagy2008-05-221-1/+1
|
* Change file mode of log files to 600.Martin Nagy2008-05-201-0/+2
| | | | 446869
* Ensure hostnames are lower during installation and when adding service princsRob Crittenden2008-05-202-14/+30
| | | | 447381
* Remove broken link for IE configuration and replace sample domain/realm. ↵Rob Crittenden2008-05-201-4/+7
| | | | | | | | | | Also fix some HTML errors: missing DOCTYPE, title, head. The web page actually comes up as a link in a search on Microsoft's site but the content is gone. It is possible it will come back at some point, who knows. 447445
* Add validators.py to the list of files.Rob Crittenden2008-05-201-0/+1
| | | | 445286
* Do uniqueness check on phone numbers and cn entered via the UI.Rob Crittenden2008-05-203-4/+80
| | | | 445286
* Don't pass the Directory Manager password on the command-line to ldapmodify.Rob Crittenden2008-05-192-8/+23
| | | | 446865
* Use split instead of find as split does not fail to provide a completeSimo Sorce2008-05-153-3/+3
| | | | component if no '.' is found.
* detect failure to write ipa_kpasswd.pid fileJim Meyering2008-05-151-7/+12
| | | | | * ipa_kpasswd.c (main): Detect not just open failure, but also any write failure.
* remove useless if-before-free testsJim Meyering2008-05-152-28/+16
| | | | | | | | | | | | I've been on a crusade (;-) to remove useless if-before-free tests, so ran a script that spotted some here. I think I removed the first batch (without braces) automatically, then manually removed the ones with curly braces around the free statements. You may well have doubts about the portability of removing those tests, but as long as you don't care about SunOS4 or earlier, you'll be fine. I've done similar things for e.g., coreutils, glibc, and git, and have had no problems.
* * ipa_pwd_extop.c (encrypt_encode_key): Handle malloc failure.Jim Meyering2008-05-151-0/+5
|
* If there is an error we need to send back a reply ourselves.Simo Sorce2008-05-151-2/+11
| | | | Return also an intelligible error message.
* For some unknown reason the sort control returns values sorted in reverse.Simo Sorce2008-05-151-1/+3
| | | | Ask for inverse order to get them straight ...
* Implement checks to make sure we are not assigning a number that is in use.Simo Sorce2008-05-151-181/+455
| | | | | | Change config to support a maximum value so that ranges can be defined. Add stubs to reach out and ask to swap in new ranges and notify that new chuncks are needed/used.
* Don't ask the user again if he wants to replace bind configuration files if ↵Martin Nagy2008-05-141-10/+1
| | | | | | he specified --setup-bind. 430090
* Fix typo, /etc/resolve.conf -> /etc/resolv.conf.Martin Nagy2008-05-141-10/+10
| | | | 444660
* Make sure all services are stopped during uninstall.Rob Crittenden2008-05-141-1/+3
| | | | | | | | | We were just shutting down the KDC if it had been started prior to IPA installation. We need to stop it in all cases. And we should restart nscd as it may have made an LDAP connection. 440322
* Enforce the maximum username length set by IPA PolicyRob Crittenden2008-05-141-0/+25
| | | | 439891
* Do a more thorough job of removing an existing DS instance.Rob Crittenden2008-05-131-0/+4
| | | | | | Add /usr/lib/dirsrv/slapd-INSTANCE to the list of directories removed. 442753
* The admin user doesn't have the inetorgperson objectclass so don't have a ↵Rob Crittenden2008-05-131-0/+10
| | | | | | | | | givenname attribute. The UI is currently hardcoded to require "first name" which renders the admin user uneditable via the UI. This is a hack that will allow admin to be edited, assuming that one doesn't try to add a firstname field. 440548
* Display information on how to uninstall a partially installed server.Rob Crittenden2008-05-091-4/+10
| | | | | | | This may have failed either because the user pressed ^C or something failed during installation. 442454
* Include information on where to look if a hostname resolves to localhost.Rob Crittenden2008-05-091-1/+1
| | | | 442812
generated by cgit (git 2.34.1) at 2024-06-22 21:02:30 +0000