summaryrefslogtreecommitdiffstats
path: root/ipalib
Commit message (Collapse)AuthorAgeFilesLines
...
* Many SELinux fixes: ldapi, ctypes and dogtagRob Crittenden2009-09-102-4/+11
| | | | | | | | | | | ldapi: grants httpd and krb5kdc to access the DS ldapi socket ctypes: the Python uuid module includes ctypes which makes httpd segfault due to SELinux problems. dogtag: remove the CRL publishing permissions. This only worked if you had dogtag installed. In the near future will publish elsewhere so for the time being CRL file publishing will be broken with SELinux enabled.
* Automatically generate an auto.master map for new automount location.Pavel Zuna2009-09-101-0/+12
| | | | Also, add the automountlocation-show command for completeness sake.
* Remove parent_key parameter kwarg.Pavel Zuna2009-09-101-7/+4
| | | | Also replace a TYPE_ERROR with ValidationError.
* Add support for different automount maps per location.Pavel Zuna2009-09-101-91/+139
|
* Fix: Object.params_minus_pk was invalid when there was no primary_key.Pavel Zuna2009-09-091-0/+2
|
* Improve ipalib.plugins.baseldap classes.Pavel Zuna2009-09-091-97/+72
| | | | | | | | | | - remove obsolete code related to PluginProxy - remove parent_key attribute, for the purpose of nested objects the parent's primary key is retrieved automatically - added support for auto-generating of UUIDs - make use of the improved attribute printing in CLI - make LDAPDelete delete all sub-entries, not just one-level - minor bug fixes
* Remove obsolete CRUD base classes as they aren't used anymore.Pavel Zuna2009-09-081-48/+0
|
* Improve attribute printing in the CLI.Pavel Zuna2009-09-081-5/+28
| | | | | - allow choice between single/multiple value per line - word wrapping
* Fix bug in dns_find - execute() returned different value than expected.Pavel Zuna2009-09-081-1/+1
|
* Fleshed out krb plugin and added example of scripting against Python APIJason Gerard DeRose2009-08-311-0/+90
|
* Enable ldapi connections in the management framework.Rob Crittenden2009-08-271-2/+0
| | | | | | If you don't want to use ldapi then you can remove the ldap_uri setting in /etc/ipa/default.conf. The default for the framework is to use ldap://localhost:389/
* Fix service_mod and add a test caseRob Crittenden2009-08-261-8/+7
|
* Remove Python 2.6 BaseException.message deprecation warningRob Crittenden2009-08-201-5/+5
|
* Clean up additional issues discovered with pylint and pycheckerRob Crittenden2009-08-203-2/+18
|
* Clean up some problems discovered with pylint and pycheckerRob Crittenden2009-08-121-0/+16
| | | | | Much of this is formatting to make pylint happy but it also fixes some real bugs.
* Add a new objectclass, ipaObject, that will add a UUID to many IPA objectsRob Crittenden2009-08-105-5/+16
| | | | | | | | | ipaObject is defined as an auxiliary objectclass so it is up to the plugin author to ensure that the objectclass is included an a UUID generated. ipaUniqueId is a MUST attribute so if you include the objectclass you must ensure that the uuid is generated. This also fixes up some unrelated unit test failures.
* Removed PluginProxy and all its usesJason Gerard DeRose2009-08-055-135/+21
|
* Add options in baseldap classes to display unaltered LDAP entries.Pavel Zuna2009-08-051-10/+44
| | | | The options in question is '--raw'.
* Fix three broken unit testsJason Gerard DeRose2009-08-043-10/+9
|
* All-around improvements to baseldap.py classes.Pavel Zuna2009-08-031-47/+245
| | | | | | | | | | | | | | - attribute re-mapping, ordering and hiding (Enables plugins to completely hide LDAP internals from users and full localisation of command output.) - translation of member DNs into object names (No more DNs when listing group members etc.) - support for "singleton" LDAP objects (Objects like "pwpolicy"; not accessed by primary key.) - new base classes for commands: LDAPModMember, LDAPAddMember and LDAPRemoveMember (Providing support for objects with 'member'-like attributes.) - LDAPSearch implicit exit code changed to 1 when nothing is found
* Prevent double encoding/decoding when processing compound types.Pavel Zuna2009-08-031-5/+10
|
* Enable attribute re-mapping and ordering when printing entries.Pavel Zuna2009-08-031-10/+22
| | | | Also print multiple values on one line separated by commas.
* Allow replicas of an IPA server using an internal dogtag server as the CARob Crittenden2009-07-151-1/+1
| | | | | | | | This involves creating a new CA instance on the replica and using pkisilent to create a clone of the master CA. Also generally fixes IPA to work with the latest dogtag SVN tip. A lot of changes to ports and configuration have been done recently.
* Catch and handle HTTP exceptions (like 401, 404, etc)Rob Crittenden2009-07-151-1/+3
|
* Require a password only once when it is passed in via a pipeRob Crittenden2009-07-101-21/+13
|
* Add a one-character option for parametersRob Crittenden2009-07-102-1/+12
|
* Add a return value to exceptions.Rob Crittenden2009-07-102-4/+13
| | | | | | | | Returning the exception value doesn't work because a shell return value is in the range of 0-255. The default return value is 1 which means "something went wrong." The only specific return value implemented so far is 2 which is "not found".
* Add textui function to display and prompt user for selection for *-find.Rob Crittenden2009-07-102-8/+66
| | | | | Since we may end up executing a *-show when an entry is selected we need to defer destroying the connection context.
* Implement support for non-LDAP-based actions that use the LDAP ACI subsystem.Rob Crittenden2009-07-104-6/+91
| | | | | | | | | | | | There are some operations, like those for the certificate system, that don't need to write to the directory server. So instead we have an entry that we test against to determine whether the operation is allowed or not. This is done by attempting a write on the entry. If it would succeed then permission is granted. If not then denied. The write we attempt is actually invalid so the write itself will fail but the attempt will fail first if access is not permitted, so we can distinguish between the two without polluting the entry.
* Change command names from *group-del-member to *group-remove-member.Pavel Zuna2009-07-096-17/+17
| | | | Signed-off-by: Jason Gerard DeRose <jderose@redhat.com>
* Fix bug: number of found entries was reported incorrectly in some plugins.Pavel Zuna2009-07-024-5/+5
|
* Make basegroup-{add, del}-member print failed members with error descriptions.Pavel Zuna2009-07-024-85/+116
|
* Fix bug: when deleting hosts, their services where deleted incorrectlyPavel Zuna2009-07-021-3/+7
|
* Remove outstanding 2's from plugins.Pavel Zuna2009-07-022-8/+8
|
* Add automount plugin.Pavel Zuna2009-07-021-0/+324
|
* Fix minor bugs, typos, etc. discovered by unit tests in plugins.Pavel Zuna2009-07-028-31/+51
|
* Fix bug in basegroup and passwd plugins (incorrect use of find_entry_by_attr).Pavel Zuna2009-07-022-14/+12
|
* Rename *-create/*-delete commands to *-add/*-del respectively.Pavel Zuna2009-07-0215-65/+65
|
* Replace references to basegroup2 in taskgroup plugin.Pavel Zuna2009-07-021-11/+11
|
* Rename plugins2 to plugins.Pavel Zuna2009-07-0213-214/+214
|
* Rename plugins2 files (remove '2' suffix').Pavel Zuna2009-07-0214-0/+0
|
* Remove use_ldap2 constant.Pavel Zuna2009-07-022-16/+7
|
* Remove all references to use_ldap2.Pavel Zuna2009-07-0214-74/+0
|
* Always use new LDAP backend when creating context.Pavel Zuna2009-07-021-4/+1
|
* Delete plugins using old LDAP backend.Pavel Zuna2009-07-0215-4081/+0
|
* Add a local implementation of httplib.SSLFile and httplib.FakeSocketrcrit2009-07-011-2/+9
| | | | | | | Python 2.6 changed its internal implementation which makes it difficult to override in a way that is backwards compatible. 508953
* Two new arguments for the help built-in command: topics and commandsRob Crittenden2009-06-151-2/+7
| | | | | ipa help topics will show all topics (equivalent to ipa help) ipa help commands will show list of all available commands
* Fix typo in variable name, object_classs->object_classRob Crittenden2009-06-151-1/+1
|
* Change plugins2 using find_entries to support incomplete (truncated) search ↵Pavel Zuna2009-06-155-41/+98
| | | | results.
* Add new set of base classes for plugins using LDAP.Pavel Zuna2009-06-151-0/+398
|
generated by cgit (git 2.34.1) at 2024-06-07 05:34:09 +0000