summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* TEMPORARY COMMITHEADmasterMartin Nagy2010-04-191-1/+2
|
* Update .gitignore and remove old .bzrignoreMartin Nagy2010-04-192-4/+38
|
* Add forgotten trailing dots in DNS recordsMartin Nagy2010-04-192-4/+11
| | | | 583023
* Some more changes for DNS forwarders promptMartin Nagy2010-04-191-3/+3
|
* Connect to the ldap during the uninstallationMartin Nagy2010-04-191-8/+28
| | | | | | We need to ask the user for a password and connect to the ldap so the bind uninstallation procedure can remove old records. This is of course only helpful if one has more than one IPA server configured.
* Delete old SRV records during uninstallationMartin Nagy2010-04-191-11/+68
|
* Accept unicode for sysrestoreMartin Nagy2010-04-191-2/+2
|
* Fix ipa-dns-install. It was failing when DNS was reinstalling.Pavel Zuna2010-04-191-1/+10
|
* Fix DNS plugin: proper output definitions, --all, dns-add-rr overwrittingPavel Zuna2010-04-191-14/+15
| | | | | | | | | | | | | | The DNS plugin is getting old, tired and already looking forward to his pension in the Carribean. It will be replaced soon by a younger, faster, safer, shorter (in terms of code) and more maintainable version. Until that happens, here's some medicine for the old guy: - proper output definitions: the DNS plugin was created before we had the has_output attribute in place - --all: this is related to the output definitions as Command.get_options() adds the --all and --raw options automatically if has_output contains entries - dns-add-rr overwritting: missing .lower() caused records to be overwritten everytime a new one was added from the CLI
* Enable LDAPObject subclasses to disable DN normalization in their methods.Pavel Zuna2010-04-161-11/+27
|
* Add interface for baseldap plugins to register additional callbacks.Pavel Zuna2010-04-161-27/+139
|
* Fix output of env plugin. It displayed more than it should.Pavel Zuna2010-04-161-0/+2
|
* Enable anonymous VLV so Solaris clients will work out of the box.Rob Crittenden2010-04-161-0/+4
| | | | | | | | Since one needs to enable the compat plugin we will enable anonymous VLV when that is configured. By default the DS installs an aci that grants read access to ldap:///all and we need ldap:///anyone
* Configure the CRL URI in dogtag.Rob Crittenden2010-04-161-1/+4
| | | | | | Also print out a restart message after applying the custom subject. It takes a while to restart dogtag and this lets the user know things are moving forward.
* Use more traditional make notation to build the test languageRob Crittenden2010-04-161-1/+1
|
* Add gettext translation test using test language.John Dennis2010-04-162-0/+89
|
* Remove incorrect option -U for --uninstall. -U is short for --unattended.Rob Crittenden2010-04-161-1/+1
|
* Update Spanish translationsJohn Dennis2010-04-131-11/+185
|
* Don't let failure to trust the CA abort the server installation.Rob Crittenden2010-04-071-2/+5
| | | | | | This error could result in things not working properly but it should be relatively easy to fix from the command-line. There is no point in not installing at all due to this.
* Add ipa man page.Pavel Zuna2010-04-073-0/+206
|
* Fix http(s)_request in dogtag. Was blowing up because of unicode strings.Pavel Zuna2010-03-301-0/+4
|
* XML-RPC signature changeJason Gerard DeRose2010-03-304-10/+7
|
* Log some information on the result of a requestRob Crittenden2010-03-301-0/+2
|
* Deleting a non-fully-qualified hostname should still delete its servicesRob Crittenden2010-03-303-3/+85
| | | | | We were being left with orphan services if the host entry was not removed using the FQDN.
* Fix output for commands that do not return entries.Pavel Zuna2010-03-262-5/+26
| | | | | | | | | | | | I also changed the default value of the print_all argument in textui.print_entry from False to True. It think it makes more sense this way, because: 1) if order is None, it will still print something 2) if order is not None, it will print what's in order first and then the rest 3) commands that care about the print_all argument have to set it in any case, those that don't care usually want to print everything
* Fix cut-and-paste error in pwpolicy pluginRob Crittenden2010-03-231-2/+2
|
* Do a better query so we can optimize seeing if a cospriority is uniqueRob Crittenden2010-03-231-7/+11
|
* Update Polish and Chinese translationsJohn Dennis2010-03-222-322/+389
|
* update Polish translationsJohn Dennis2010-03-221-83/+886
|
* Use ldap2.make_*dn* methods in pwpolicy plugin.Pavel Zuna2010-03-221-1/+5
| | | | Fixes #572423.
* Add INTERNAL flag to frontend plugins. If set, the plugin won't show in UI.Pavel Zuna2010-03-222-1/+6
|
* Use GSSAPI auth for the ipa-replica-manage list and del commands.Rob Crittenden2010-03-194-5/+76
| | | | | | | | | | | | This creates a new role, replicaadmin, so a non-DM user can do limited management of replication agreements. Note that with cn=config if an unauthorized user performs a search an error is not returned, no entries are returned. This makes it difficult to determine if there are simply no replication agreements or we aren't allowed to see them. Once the ipaldap.py module gets replaced by ldap2 we can use Get Effective Rights to easily tell the difference.
* Raise an error if no modifications were performed in an update.Rob Crittenden2010-03-191-2/+0
| | | | | | | This will alert the user that nothing was done and is handy when used with --attr=''. This can be used to delete a non-required attribute but can be set to any valid attribute, present or not. We should alert the user if they attempt to delete a non-existant value.
* Provide mechanism in ipautil.run() to not log all arguments.Rob Crittenden2010-03-192-2/+44
| | | | | | | This is primarily designed to not log passwords but it could have other uses. 567867
* Add option to enable pam_mkhomedirs in the IPA client installerrcrit2010-03-192-5/+15
|
* Fix the client and client-rpms make targetsrcrit2010-03-192-2/+4
|
* Ensure that the group policy priority is unique.Rob Crittenden2010-03-192-18/+89
| | | | | | We use CoS to determine the order in which group policy is applied. The behavior in CoS is undefined for multiple entries with the same cospriority.
* Better customize the message regarding the CA based on the install options.Rob Crittenden2010-03-191-5/+10
| | | | | | | | | | There are now 3 cases: - Install a dogtag CA and issue server certs using that - Install a selfsign CA and issue server certs using that - Install using either dogtag or selfsign and use the provided PKCS#12 files for the server certs. The installed CA will still be used by the cert plugin to issue any server certs.
* Make CA PKCS#12 location arg for ipa-replica-prepare, default /root/cacert.p12Rob Crittenden2010-03-192-3/+10
| | | | | pki-silent puts a copy of the root CA into /root/tmp-ca.p12. Rename this to /root/cacert.p12.
* Initialize the api so imports work, trust all CAs included in the PKCS#12.Rob Crittenden2010-03-191-1/+9
|
* Fix a number of bugs in the pwpolicy pluginRob Crittenden2010-03-191-8/+22
| | | | | | | | | | This fixes: - Consistent usage of priority vs cospriority in options - Fixes bug introduced with recent patch where global policy couldn't be updated - Doesn't allow cospriority to be removed for groups (#570536) - returns the priority with group policy so it can be displayed - Properly unicode encode group names for display
* Include params in Method.output_paramsRob Crittenden2010-03-191-0/+9
| | | | | | | | Method overrides the Command get_output_params() method and only returns the object params, not anything defined within the method itself. Return those as well so they are displayed in output. Some care needs to be taken to avoid returning duplicate values. In the case of duplicates the value in obj.params wins.
* Catch modifications with no updates and raise an errorRob Crittenden2010-03-172-2/+11
| | | | 569848
* Retrieve the LDAP schema using kerberos credentials.Rob Crittenden2010-03-173-8/+41
| | | | This is required so we can disable anonymous access in 389-ds.
* Update Ukrainian translationsJohn Dennis2010-03-171-26/+208
|
* Handle the case where the DS group exists but the user does notRob Crittenden2010-03-161-0/+9
| | | | | | | | If the group exists but the user doesn't then useradd blows up trying to create the user and group. So test to see if the group exists and if it does pass along the -g argument to useradd. Resolves #502960
* Proper use of set up vs setup (verb vs noun)Rob Crittenden2010-03-161-3/+3
| | | | Resolves #529787
* Fix typo in automount doc message.Rob Crittenden2010-03-162-12/+180
| | | | | | Update the po to pick up this change too. 573979
* Add Ukrainian translationsJohn Dennis2010-03-164-6/+1497
|
* remove .pot target from Makefile.inJohn Dennis2010-03-161-3/+0
| | | | | | We want to manually make the .pot file, we shouldn't have anything in the Makefile which will cause the .pot file to be rebuilt because of dependencies.
generated by cgit (git 2.34.1) at 2024-04-26 03:09:16 +0000