summaryrefslogtreecommitdiffstats
path: root/install
Commit message (Collapse)AuthorAgeFilesLines
* Add TOTP watermark supportHEADmasterNathaniel McCallum2014-07-251-1/+2
| | | | | | | | | | | | | | | | This prevents the reuse of TOTP tokens by recording the last token interval that was used. This will be replicated as normal. However, this patch does not increase the number of writes to the database in the standard authentication case. This is because it also eliminates an unnecessary write during authentication. Hence, this patch should be write-load neutral with the existing code. Further performance enhancement is desired, but is outside the scope of this patch. https://fedorahosted.org/freeipa/ticket/4410 Reviewed-By: Alexander Bokovoy <abokovoy@redhat.com>
* Allow hashed passwords in DSMartin Kosek2014-07-251-0/+5
| | | | | | | | | Without nsslapd-allow-hashed-passwords being turned on, user password migration fails. https://fedorahosted.org/freeipa/ticket/4450 Reviewed-By: Alexander Bokovoy <abokovoy@redhat.com>
* Improve password validity check.David Kupka2014-07-241-4/+31
| | | | | | | Allow use of characters that no longer cause troubles. Check for leading and trailing characters in case of 389 Direcory Manager password. Reviewed-By: Martin Kosek <mkosek@redhat.com>
* webui: fix disabled state of service's PAC typePetr Vobornik2014-07-211-31/+47
| | | | | | | | | | | Nested options (MS-PAC and PAD) of service's PAC type should be disabled if no value is supplied (default value is "Inherited from server configuration"). That was not the case - regression. This patch fixes it and along with it simplifies the update method of option_widget_base to be more comprehensible. Reviewed-By: Endi Sukma Dewata <edewata@redhat.com>
* webui: disable ipapermbindruletype if permission in a privilegePetr Vobornik2014-07-211-1/+10
| | | | | | | User is not able to change Bind Rule Type if permission is already member of a privilege. Let's disable it and don't confuse user. Reviewed-By: Endi Sukma Dewata <edewata@redhat.com>
* webui: fix selection of empty value in a select widgetPetr Vobornik2014-07-211-1/+1
| | | | | | | | | | Little regression - select widget could not handle empty or no array as an input value. It broke 'undo' operation in Permissions' 'Type' attribute while switching between '' and some value. Reviewed-By: Endi Sukma Dewata <edewata@redhat.com>
* webui: show managed fields as readonly and not disabledPetr Vobornik2014-07-211-4/+2
| | | | | | | | | Visible read-only fields are no longer displayed as disabled in permission details facet. https://fedorahosted.org/freeipa/ticket/4254 Reviewed-By: Endi Sukma Dewata <edewata@redhat.com>
* webui: fix add of input group classPetr Vobornik2014-07-211-1/+4
| | | | | | | | | | The input-group class was added based on visibility of child elements. This failed when it had to be determined *before* displaying the widget. Now it's added if the buttons are not hidden by `display: none` CSS rule. Reviewed-By: Endi Sukma Dewata <edewata@redhat.com>
* webui: reflect readonly statePetr Vobornik2014-07-211-27/+110
| | | | | | | | | | | Separate update of read-only state from update of value. It should be possible to switch from read-only UI to editable UI without value change. https://fedorahosted.org/freeipa/ticket/4254 Reviewed-By: Endi Sukma Dewata <edewata@redhat.com>
* webui: option_widget_base: sort optionsPetr Vobornik2014-07-212-2/+18
| | | | | | https://fedorahosted.org/freeipa/ticket/4253 Reviewed-By: Endi Sukma Dewata <edewata@redhat.com>
* webui: attr widget: get list of possible attrs from ipapermdefaultattrPetr Vobornik2014-07-211-0/+10
| | | | | | | | | | | | Very useful for managed permissions since the list of attrs in metadata might be smaller that default attributes. This smooths behavior if one removes an attr from effective attrs which is not in metadata. Without this it will disappear from the list and one has to add it manually through 'Add'. https://fedorahosted.org/freeipa/ticket/4253 Reviewed-By: Endi Sukma Dewata <edewata@redhat.com>
* webui: custom attr in attributes widgetPetr Vobornik2014-07-213-13/+80
| | | | | | | | | | Web UI doesn't always know what are the possible attributes for target object. This will allow to add custom attributes if necessary. https://fedorahosted.org/freeipa/ticket/4253 Reviewed-By: Endi Sukma Dewata <edewata@redhat.com>
* webui: optimize (re)creation of option widgetPetr Vobornik2014-07-211-11/+14
| | | | | | | | | | | | | | There is a case where attributes widget can contain > 1000 items. It's about 3000 nodes. It's slow in jQuery. Simple move to dojo speeds it up (is closer to native calls) while maintaining developer friendliness. Now the biggest lag is in browser's render. It's probably not worth developer time to optimize that. https://fedorahosted.org/freeipa/ticket/4253 Reviewed-By: Endi Sukma Dewata <edewata@redhat.com>
* webui: add filter to attributes widgetPetr Vobornik2014-07-212-0/+54
| | | | | | | | | | | Adds filter field to attribute box in permissions for better user experience. User can then quickly find the desired attribute. Initial version of the patch authored by: Adam Misnyovszki https://fedorahosted.org/freeipa/ticket/4253 Reviewed-By: Endi Sukma Dewata <edewata@redhat.com>
* webui: improve usability of attributes widgetPetr Vobornik2014-07-213-87/+17
| | | | | | | | | | | | | | | Attributes widget layour was changed from tiny table which allowed to display only few options to a checkbox list with multiple columns (depends on container). Check all attributes option was removed to force the user to read through the attributes which he selects. Initial version authored by: Adam Misnyovszki https://fedorahosted.org/freeipa/ticket/4253 Reviewed-By: Endi Sukma Dewata <edewata@redhat.com>
* trusts: Make cn=adtrust agents sysaccount nestedgroupTomas Babej2014-07-181-0/+1
| | | | | | | | | | Since recent permissions work references this entry, we need to be able to have memberOf attributes created on this entry. Hence we need to include the nestedgroup objectclass. https://fedorahosted.org/freeipa/ticket/4433 Reviewed-By: Jan Cholasta <jcholast@redhat.com>
* webui: capitalize labels of undo and undo all buttonsPetr Vobornik2014-07-081-2/+2
| | | | | | | Make the label of these buttons consistent with other buttons which have capital first letters. Reviewed-By: Fraser Tweedale <ftweedal@redhat.com>
* Update translationsPetr Viktorin2014-07-0720-1405/+1975
| | | | | Pull new translations from Transifex Thanks to all translators!
* webui: display messages contained in API responsesPetr Vobornik2014-07-074-57/+92
| | | | | | | | API responses can contain warnings in "messages" array. This patch also adds support for displaying multiple notifications at the same time in order to show the message and a status of finished operation. Reviewed-By: Petr Spacek <pspacek@redhat.com>
* webui: new navigation structurePetr Vobornik2014-07-044-83/+118
| | | | | | | | https://fedorahosted.org/freeipa/ticket/4418 Reviewed-By: Fraser Tweedale <ftweedal@redhat.com> Reviewed-By: Martin Kosek <mkosek@redhat.com> Reviewed-By: Petr Spacek <pspacek@redhat.com>
* Allow read access to services in cn=masters to auth'd usersPetr Viktorin2014-07-041-2/+2
| | | | | | https://fedorahosted.org/freeipa/ticket/4425 Reviewed-By: Martin Kosek <mkosek@redhat.com>
* Fix: Missing ACI for records in 40-dns.updateMartin Basti2014-07-042-2/+3
| | | | Reviewed-By: Petr Viktorin <pviktori@redhat.com>
* webui: change ipatokennotbefore and ipatokennotafter types to datetimePetr Vobornik2014-07-041-4/+16
| | | | | | https://fedorahosted.org/freeipa/ticket/3369 Reviewed-By: Martin Kosek <mkosek@redhat.com>
* webui-build: use /usr/share/java/js.jar instead of rhino.jarPetr Vobornik2014-07-032-2/+2
| | | | | | | | | /usr/share/java/rhino.jar is a Fedora's symlink to /usr/share/java/js.jar Debian doesn't have it. Direct usage of upstream /usr/share/java/js.jar should work on both systems. Reviewed-By: Timo Aaltonen <tjaalton@ubuntu.com>
* DNSSEC: Add experimental support for DNSSECMartin Basti2014-07-022-0/+23
| | | | | Ticket: https://fedorahosted.org/freeipa/ticket/4408 Reviewed-By: Petr Spacek <pspacek@redhat.com>
* Add NSEC3PARAM to zone settingsMartin Basti2014-07-023-3/+4
| | | | | Ticket: https://fedorahosted.org/freeipa/ticket/4413 Reviewed-By: Petr Vobornik <pvoborni@redhat.com>
* Remove NSEC3PARAM recordMartin Basti2014-07-023-17/+3
| | | | | | | Revert 5b95be802c6aa12b9464813441f85eaee3e3e82b Ticket: https://fedorahosted.org/freeipa/ticket/4413 Reviewed-By: Petr Vobornik <pvoborni@redhat.com>
* Update X-ORIGIN for 4.0Martin Kosek2014-07-013-15/+15
| | | | | | | | It was decided not to change the OID space for FreeIPA 4.0+ objectclasses. However, we should still at least properly mark the X-ORIGIN to make analyzing schema easier. Reviewed-By: Petr Viktorin <pviktori@redhat.com>
* Fix ACI in DNSMartin Basti2014-07-012-1/+1
| | | | | | | Added ACI for idnssecinlinesigning, dlvrecord, nsec3paramrecord, tlsarecord Reviewed-By: Petr Viktorin <pviktori@redhat.com>
* DNSSEC: WebUI: add TLSA recordMartin Basti2014-07-011-1/+18
| | | | Reviewed-By: Petr Vobornik <pvoborni@redhat.com>
* DNSSEC: add TLSA record typeMartin Basti2014-07-011-1/+2
| | | | | Ticket: https://fedorahosted.org/freeipa/ticket/4328 Reviewed-By: Petr Vobornik <pvoborni@redhat.com>
* webui: focus invalid widget on validation errorPetr Vobornik2014-07-013-3/+30
| | | | | Reviewed-By: Fraser Tweedale <ftweedal@redhat.com> Reviewed-By: Endi Sukma Dewata <edewata@redhat.com>
* webui: fix required error notification in multivalued widgetPetr Vobornik2014-07-011-4/+3
| | | | | Reviewed-By: Fraser Tweedale <ftweedal@redhat.com> Reviewed-By: Endi Sukma Dewata <edewata@redhat.com>
* webui: show notification instead of modal dialog on validation errorPetr Vobornik2014-07-011-6/+1
| | | | | Reviewed-By: Fraser Tweedale <ftweedal@redhat.com> Reviewed-By: Endi Sukma Dewata <edewata@redhat.com>
* Allow admins to write krbLoginFailedCountPetr Viktorin2014-07-011-3/+2
| | | | | | | | Without write access to this attribute, admins could not unlock users. https://fedorahosted.org/freeipa/ticket/4409 Reviewed-By: Martin Kosek <mkosek@redhat.com>
* install/ui/build: Build core.jsPetr Viktorin2014-06-301-0/+2
| | | | | | | | The make-ui.sh script builds both app.js and core.js, but only one was specified in the Makefile. Correct the mistake. Reviewed-By: Petr Vobornik <pvoborni@redhat.com>
* webui: support unlock user commandPetr Vobornik2014-06-302-2/+12
| | | | | | | | | | Call user-unlock command from Web UI. It will unlock displayed user on current master. https://fedorahosted.org/freeipa/ticket/4407 Reviewed-By: Endi Sukma Dewata <edewata@redhat.com>
* webui: add sync_otp.htmlPetr Vobornik2014-06-302-0/+68
| | | | | | | | | standalone page for OTP token synchronization. It reuses SyncOTPScreen widget instead of reimplementing the logic as in other standalone pages. https://fedorahosted.org/freeipa/ticket/4218 Reviewed-By: Endi Sukma Dewata <edewata@redhat.com>
* webui: layer for standalone pages which use WebUI frameworkPetr Vobornik2014-06-307-16/+66
| | | | | | | | | | Current compiled Web UI layer (app.js) contains every FreeIPA plugin and not just the UI framework. It's not possible to start just a simple facet. This commit creates a basis for a layer (core.js) which contains only framework code and not entity related code. Reviewed-By: Endi Sukma Dewata <edewata@redhat.com>
* webui: fix confirmation mixin origin checkPetr Vobornik2014-06-301-1/+4
| | | | | | | | Current check is not enough. https://fedorahosted.org/freeipa/ticket/4098 Reviewed-By: Endi Sukma Dewata <edewata@redhat.com>
* webui: bind Login facet and OTP sync facetPetr Vobornik2014-06-304-3/+66
| | | | | | | | | Simple plugin which handles transition from login facet to OTP sync facet and vice versa. https://fedorahosted.org/freeipa/ticket/4218 Reviewed-By: Endi Sukma Dewata <edewata@redhat.com>
* webui: support global notifications in all containersPetr Vobornik2014-06-303-2/+11
| | | | | | | | Global notifications were limited to "main" container. Now they have their own container which is displayed over other ones. It makes them usable everywhere. Reviewed-By: Endi Sukma Dewata <edewata@redhat.com>
* webui: add link pointing to OTP sync page to loginPetr Vobornik2014-06-303-0/+18
| | | | | | https://fedorahosted.org/freeipa/ticket/4218 Reviewed-By: Endi Sukma Dewata <edewata@redhat.com>
* webui: add OTP token synchronizationPetr Vobornik2014-06-305-1/+350
| | | | | | | | New SyncOTPScreen widget and related facet. https://fedorahosted.org/freeipa/ticket/4218 Reviewed-By: Endi Sukma Dewata <edewata@redhat.com>
* webui: base class for LoginScreen-like facetsPetr Vobornik2014-06-302-267/+345
| | | | | | | LoginScreen has layout which can be reused for other facets/widgets, e.g. for Sync OTP facet Reviewed-By: Endi Sukma Dewata <edewata@redhat.com>
* Update translationsPetr Viktorin2014-06-2717-3931/+8428
| | | | | | | Pull fresh translations from Transifex. Update the POT file. Thanks to all translators!
* Fix objectClass casing in LDIF to prevent schema update errorMartin Kosek2014-06-271-1/+1
| | | | | | | | | When a new objectclass was defined as "objectclass" and not "objectClass", it made the schema updater skip some objectclasses. https://fedorahosted.org/freeipa/ticket/4405 Reviewed-By: Rich Megginson <rmeggins@redhat.com>
* webui: extract rpc value from object envelopePetr Vobornik2014-06-276-9/+61
| | | | | | | | adapt Web UI to a newer style of encapsulation object data https://fedorahosted.org/freeipa/ticket/4394 Reviewed-By: Endi Sukma Dewata <edewata@redhat.com>
* webui: send API version in RPC requestsPetr Vobornik2014-06-272-1/+6
| | | | | | | | | | | | | Currently there is an incorrect behavior that server doesn't send datetime and dnsname data in new format. This patch adds the version to each RPC request making the UI look as the latest client. Server then sends data in correct format. It also removes the "unknown version" warning from each RPC response. https://fedorahosted.org/freeipa/ticket/4394 Reviewed-By: Endi Sukma Dewata <edewata@redhat.com>
* webui: fix detection of RPC commandPetr Vobornik2014-06-272-10/+10
| | | | | | | | | old detection did not work with the static version used for test and demonstration purposes. https://fedorahosted.org/freeipa/ticket/4357 Reviewed-By: Endi Sukma Dewata <edewata@redhat.com>
generated by cgit (git 2.34.1) at 2025-08-27 23:36:32 +0000