summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* Merge.Karl MacMillan2007-12-1848-513/+1291
|\
| * Restart ipa-webgui in create_instance()Mark McLoughlin2007-12-171-1/+1
| | | | | | | | | | | | | | | | Just in case there is an existing ipa-webgui running before ipa-server-install, restart the instance rather than just starting it. Signed-off-by: Mark McLoughlin <markmc@redhat.com>
| * Fix error caused by creation steps patch mergeMark McLoughlin2007-12-171-1/+0
| | | | | | | | | | | | | | Merging the "host keytab" and "creation steps" patchs left a stray old-style call to Service.step() Signed-off-by: Mark McLoughlin <markmc@redhat.com>
| * Add host keytab creation for mastersSimo Sorce2007-12-131-0/+31
| |
| * Allow for direct entry of group names when creating delegations.Rob Crittenden2007-12-132-2/+28
| | | | | | | | | | | | | | | | | | This requires a bit of trickery. I use the onblur() javascript function to note when the field is left and store whatever was entered there. Then when the page is submitted if a dn doesn't exist for that field but they did enter something, do a lookup to see if there is a group by that name.
| * Fix the UI indicators for mandatory fields.Rob Crittenden2007-12-123-4/+12
| | | | | | | | | | The source and target groups weren't highlighted but the entire block of checkboxes was and it looked absolutely horrible.
| * Refactor krbinstance and dsinstance creation stepsMark McLoughlin2007-12-137-168/+119
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Creation steps are currently done with: self.start_creation(2, "Create foo") self.step("do foo") self.foo() self.step("do bar") self.bar() self.done_creation() This patch refactors that into the much more straightforward: self.step("do foo", self.foo) self.step("do bar", self.bar) self.start_creation("Create foo") Signed-off-by: Mark McLoughlin <markmc@redhat.com>
| * Don't template files which don't contain variablesMark McLoughlin2007-12-131-16/+25
| | | | | | | | | | | | | | | | | | | | | | | | The following files hav no template variables, so don't bother templating them: - memberof-conf.ldif - referint-conf.ldif - dna-conf.ldif - certmap.conf.template Signed-off-by: Mark McLoughlin <markmc@redhat.com>
| * Refactor dsinstance ldap modify codeMark McLoughlin2007-12-133-117/+61
| | | | | | | | | | | | | | | | | | | | | | | | | | | | Just a patch to refactor lots of similar code in dsinstance and krbinstance using a simple helper method. Note, there are some differences: - Some code used to call ldapmodify without -h 127.0.0.1 - Some of the code used to just print an error rather than using logging.critical() - Some code used to log some extra debug Signed-off-by: Mark McLoughlin <markmc@redhat.com>
| * Only update key/value files if necessaryMark McLoughlin2007-12-131-0/+8
| | | | | | | | | | | | | | | | | | | | | | | | | | update_key_val_in_file() shouldn't try and write to a file if the key is already set to the given value in the file Rationale here is that if we write these files out while building a system image, ipa-server-install shouldn't need to re-write them and, therefore, they don't need to be writable. Signed-off-by: Mark McLoughlin <markmc@redhat.com>
| * More ipautil fixingMark McLoughlin2007-12-136-43/+36
| | | | | | | | | | | | | | | | Recently, dsinstance and krbinstance was fixed to not import * from ipautil; do the same for the rest of ipaserver. Signed-off-by: Mark McLoughlin <markmc@redhat.com>
| * Fix ldif to work with ldapmodify in openldap-2.4.xMark McLoughlin2007-12-132-0/+6
| | | | | | | | | | | | | | | | | | | | | | | | It seems that in openldap-2.4.x ldapmodify has gotten somewhat more picky about the ldif it accepts. See here for more details: https://bugzilla.redhat.com/422251 Not sure whether ldapmodify will be fixed, but for now just fix the ldif. Signed-off-by: Mark McLoughlin <markmc@redhat.com>
| * Fix ipa-python packagingMark McLoughlin2007-12-133-9/+3
| | | | | | | | | | | | | | | | | | | | | | Latest Fedora 9 python distutils generates .egg-info files; follow the recommendation at: http://fedoraproject.org/wiki/Packaging/Python/Eggs and just package everything under %{python_sitelib}/ Signed-off-by: Mark McLoughlin <markmc@redhat.com>
| * Merge.Karl MacMillan2007-12-121-1/+1
| |\
| | * Merge in Rob aci patch (resolve conflict)Simo Sorce2007-12-121-1/+1
| | |
| * | Fix spec file to grab certinstall.Karl MacMillan2007-12-122-0/+2
| | |
| * | Move radius server components into a separate package.Karl MacMillan2007-12-1215-10/+154
| |/
| * Separate out ACIs that affect radiusSimo Sorce2007-12-121-1/+2
| |
| * Handle add/removing and stopping restarting daemons in update/removeSimo Sorce2007-12-122-0/+38
| |
| * Merge.Karl MacMillan2007-12-123-29/+36
| |\
| | * from ipa.ipautil import * --> from ipa import ipautilSimo Sorce2007-12-121-24/+24
| | |
| | * - Better access control, make sure not even admins can read out passwordsSimo Sorce2007-12-113-13/+20
| | | | | | | | | | | | | | | - Insure admins can't locked out by mistake by inclusion in disabled groups - Fix also minor error in krbinstance.py
| * | Add a man page for ipa-getkeytab.Karl MacMillan2007-12-122-1/+66
| |/
| * Fix minor typo in unauthorized page.Karl MacMillan2007-12-121-1/+1
| |
| * Add automatic browser configuration for kerberos SSO using javascript.Rob Crittenden2007-12-126-9/+134
| | | | | | | | | | | | This uses the UniversalPreferencesWrite function to set the browser preferences to allow negotiation and ticket forwarding in the IPA domain. A self-signed certificate is generated to sign the javascript.
| * User provided certs.Karl MacMillan2007-12-126-21/+224
| |
| * Remove radiusinstance from ipa-server-install.Karl MacMillan2007-12-121-1/+0
| |
| * Improve confirmation.Karl MacMillan2007-12-121-6/+9
| |
| * Remove radius from main install script and addKarl MacMillan2007-12-124-6/+74
| | | | | | | | ipa-radius-install.
| * Confirm before configuring the client.Karl MacMillan2007-12-121-1/+7
| |
| * Return a proper error code from ipa-webgui so thatKarl MacMillan2007-12-121-31/+38
| | | | | | | | | | the init script can indicate when the service fails to start.
| * Make the old entry option in update_*, check for empty parameters andRob Crittenden2007-12-114-92/+233
| | | | | | | | fix some problems reported by pychecker.
| * Change from "Common Name" to "Full Name"Rob Crittenden2007-12-111-2/+2
| |
| * Enable searching for multiple things at onceRob Crittenden2007-12-111-1/+1
| |
| * merge with upstreamSimo Sorce2007-12-1135-338/+3136
| |\
| * | Make sure we don't keep around old keys.Simo Sorce2007-12-111-0/+5
| | | | | | | | | | | | | | | Fixes problem changing passwords seen only on servers where re-installations where performed (and old secrets piled up)
| * | iMerge with upstreamSimo Sorce2007-12-1123-96/+159
| |\ \
| * | | Minor fixSimo Sorce2007-12-111-1/+1
| | | |
| * | | Make admintools discover the domain using DNS calls to find the LDAP server.Simo Sorce2007-12-111-5/+51
| | | |
| * | | Move dnsclient into ipa-python so that I will be able to use it in ipaconfigSimo Sorce2007-12-105-10/+9
| | | |
* | | | Cleanup from radius merge.Karl MacMillan2007-12-111-1/+1
| |_|/ |/| |
* | | Make sure we don't keep around old keys.Simo Sorce2007-12-111-0/+5
| | | | | | | | | | | | | | | Fixes problem changing passwords seen only on servers where re-installations where performed (and old secrets piled up)
* | | Make admintools discover the domain using DNS calls to find the LDAP server.Simo Sorce2007-12-111-5/+51
| | |
* | | Add simple UI for command-line programs to be able to select whenRob Crittenden2007-12-105-28/+176
| | | | | | | | | | | | multiple entries are returned.
* | | Tie the logging module to 'PythonOption IPADebug' in /etc/httpd/conf.d/ipa.confRob Crittenden2007-12-112-10/+10
| | |
* | | Prompt user before downloading a keytab that this will create a new secret,Rob Crittenden2007-12-061-1/+9
| | | | | | | | | | | | breaking any existing keytabs for that principal.
* | | Use more common names for first and last name labelsRob Crittenden2007-12-101-2/+2
| | |
* | | Import correct httpinstance.pyKarl MacMillan2007-12-111-3/+6
| | |
* | | Commit corrected certs.pyKarl MacMillan2007-12-111-28/+49
| | |
* | | Convert the setup of ssl from a shell script to aKarl MacMillan2007-12-067-229/+245
| | | | | | | | | | | | | | | python module. This is in preparation for user supplied certs.
generated by cgit (git 2.34.1) at 2025-09-03 21:31:22 +0000