summaryrefslogtreecommitdiffstats
path: root/ipaserver
Commit message (Collapse)AuthorAgeFilesLines
...
* Add signing profile to CA installation so we can sign the firefox jar file.Rob Crittenden2009-05-044-57/+170
| | | | | | | Use the requestId we get back from the CA when requesting the RA agent cert and use that to issue the certificate rather than hardcoding 7. This also adds some clean-up of file permissions and leaking fds
* Make search filter generation a bit safer. Minor bug fixes/code improvements.Pavel Zuna2009-04-301-8/+12
|
* Add method to generate DN from attribute directly, without making RDN first.Pavel Zuna2009-04-301-0/+10
|
* Use XML rather than string routines to handle response from dogtag Remove ↵Rob Crittenden2009-04-281-6/+17
| | | | trailing CR/LF from the password file
* Rename errors2.py to errors.py. Modify all affected files.Pavel Zuna2009-04-239-76/+76
|
* Fix filter generator in ldapapi. Shouldn't produce invalid filters anymore.Pavel Zuna2009-04-231-6/+12
|
* Throw AlreadyGroupMember instead of EmptyModlist when trying to re-add ↵Pavel Zuna2009-04-221-3/+4
| | | | member to a group.
* Change ldap2.__handle_errors into the global _handle_errors function.Pavel Zuna2009-04-221-52/+53
|
* Make it possible to construct partial match filters using make_filter_* ↵Pavel Zuna2009-04-221-6/+20
| | | | methods. Add missing _sasl_auth variable.
* Convert the RA plugin to use nsslib and remove the configure methodsRob Crittenden2009-04-201-134/+39
|
* Issue DS and Apache server certs during CA installation.Rob Crittenden2009-04-204-102/+355
| | | | | | | Notes: - will create a CA instance (pki-ca) if it doesn't exist - maintains support for a self-signed CA - A signing cert is still not created so Firefox autoconfig still won't work
* Remove unwanted white spaceRob Crittenden2009-04-201-12/+12
|
* Finish work replacing the errors module with errors2Rob Crittenden2009-04-204-95/+153
| | | | | | Once this is committed we can start the process of renaming errors2 as errors. I thought that combinig this into one commit would be more difficult to review.
* Renaming the backend ldap plugin to ldapapi.py to prevent module import issuesRob Crittenden2009-04-061-0/+0
|
* Use full OID for LDAP SYNTAX identification. Don't convert Booleans and ↵Pavel Zuna2009-04-061-24/+20
| | | | Integers into respective python types as their ranges might not match. Rename module-scope functions.
* Add new LDAP backend plugin.root2009-04-031-0/+741
|
* Implement an installer for the Dogtag certificate system.Rob Crittenden2009-04-035-17/+764
| | | | | | | | | | | | | | | The CA is currently not automatically installed. You have to pass in the --ca flag to install it. What works: - installation - unistallation - cert/ra plugins can issue and retrieve server certs What doesn't work: - self-signed CA is still created and issues Apache and DS certs - dogtag and python-nss not in rpm requires - requires that CS be in the "pre" install state from pkicreate
* Renamed remaining plugins still using f_* b_* conventionJason Gerard DeRose2009-04-011-0/+0
|
* Translate variables on all lines and sort files to be updatedRob Crittenden2009-03-251-3/+5
| | | | | | | | Only the dn and the first line of any entry that was spread across multiple lines were getting passed through the template engine. If we are given a directory to process, sort the files in that directory so the order can be predicted. Some updates rely on others.
* DNA is now configured using an update fileRob Crittenden2009-03-251-4/+0
|
* Allow a search using only the exact search filterRob Crittenden2009-03-251-4/+10
|
* Raise a more specific error when a user lacks the proper permissions.Rob Crittenden2009-03-251-1/+5
| | | | | The info part of the message will contain details on what permission failed on what attribute.
* Update objectclasses for groups, by default not posix groups.Rob Crittenden2009-02-271-1/+1
| | | | | | This change depends on DS bugs 487574 and 487725. Groups cannot be promoted properly without these fixed. It will fail with an Object Class violation because gidNumber isn't set.
* Enforce netgroup uniqueness, allow netgroups to be members of netgroupsRob Crittenden2009-02-271-0/+6
| | | | | When adding an entry, convert a constraint violation of "already exists" into a DuplicateEntry exception so the user gets a useful response
* Removed 'Assert False' that was mistakingly left in cert.py; small cleanup ↵Jason Gerard DeRose2009-02-171-4/+2
| | | | in cert.py and ra.py imports
* Implemented more elegant way for entire plugin module to be conditionally ↵Jason Gerard DeRose2009-02-171-3/+7
| | | | skipped; updated cert.py and ra.py modules to use this
* Added env.enable_ra variable and change cert.py and ra.py plugin modules to ↵Jason Gerard DeRose2009-02-171-1/+2
| | | | register plugins conditionally
* Cleaned up ra.revoke_certificate() and ra.take_certificate_off_hold(); added ↵Jason Gerard DeRose2009-02-171-142/+121
| | | | more tests in integration.py
* Some cleanup in ra.request_certificate()Jason Gerard DeRose2009-02-171-44/+41
|
* More work on ra.check_request_status() and ra.get_certificate()Jason Gerard DeRose2009-02-171-55/+83
|
* Continued cleanup cert/ra pluginsJason Gerard DeRose2009-02-171-20/+57
|
* Fixed a few problems in ra.py backend pluginJason Gerard DeRose2009-02-171-4/+2
|
* Started cleanup work on ra plugin; fixed problem in api.bootstrap() when ↵Jason Gerard DeRose2009-02-171-102/+76
| | | | process does not have permision to open log file
* Renamed b_ra.py plugin module to ra.pyJason Gerard DeRose2009-02-171-0/+0
|
* Fix AttributeError on python 2.4 when referencing _ldap.dnRob Crittenden2009-02-131-0/+1
|
* Install policy schemaJakub Hrozek2009-02-131-0/+2
|
* Remove references to detail. This was used by the v1 exception systemRob Crittenden2009-02-111-20/+3
|
* Incorporate new schema for IPAv2Rob Crittenden2009-02-111-0/+6
| | | | | | | | Loading this via LDIF is a temporary measure until we can load it online. This requires removing the dNSRecord declarations from 05rfc2247.ldif so a replacement copy is included for now. Also add the netgroups container.
* Add make_xxx_dn routines for policyJakub Hrozek2009-02-101-0/+77
|
* Fix the default search scopeJakub Hrozek2009-02-101-1/+1
|
* Rename ipa-python directory to ipapython so it is a real python libraryRob Crittenden2009-02-099-16/+16
| | | | | We used to install it as ipa, now installing it as ipapython. The rpm is still ipa-python.
* Allow specifying search scope in {ldap,servercore}.searchJakub Hrozek2009-02-092-4/+15
|
* Remove more unused files and functions, replace ipaerror with new error classesRob Crittenden2009-02-064-17/+18
|
* Consolidate all update files into one locationRob Crittenden2009-02-063-84/+0
|
* Remove some duplicated code that was moved to ipaserver and use it Remove ↵Rob Crittenden2009-02-065-734/+36
| | | | some unused files
* Remove depreciated mod_python_xmlrpc.py and test_client files from ipaserver/Jason Gerard DeRose2009-02-062-331/+0
|
* Get merged tree into an installalble state.Rob Crittenden2009-02-033-3/+2
| | | | | | | | I have only tested the all, rpms and *clean targets directly. install may work but the rpm moves a lot of things around for us. The Apache configuration file isn't in its final state but it works with the new mod_python configuration.
* Finished small tweaks to get new ipaserver.xmlrpc() mod_python handler workingJason Gerard DeRose2009-02-033-8/+34
|
* Started work on a much simplified mod_python serverJason Gerard DeRose2009-02-035-84/+69
|
* Fixed some of the test_xmlrpc unit testsJason Gerard DeRose2009-02-032-6/+6
|
generated by cgit (git 2.34.1) at 2024-11-12 11:02:50 +0000