| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
|
|
|
|
|
| |
Set password for admin user using the Directory Mangaer account
and the mozldapldappaswd binary to get and SSL connection
Fix some timeout problems with deploying keytabs
Fix ipa_pwd_extop to actuallt correctly detect an SSL connection
Do not ask for the user to use for the directory unless 'dirsrv' is
an existing user which may clash, create it silently
|
| | |
|
| |\ |
|
| | | |
|
| | |
| |
| |
| | |
we need to access the generated keytabs
|
| | | |
|
| | | |
|
| | |
| |
| |
| |
| |
| | |
This way it returns results even if the search times out.
The find_users() search now returns a counter as the first result, which
is set to -1 if the results are partial.
|
| | |
| |
| |
| |
| |
| | |
Add fields to search results
Put result() call inside try block - it's throwing an exception
Trap ADMINLIMIT and SIZELIMIT exceptions
|
| | |
| |
| |
| |
| |
| | |
Implement adding a group to a group
Some other small fixups
Add new cmd-line tool ipa-delgroup
|
| | |
| |
| |
| |
| |
| |
| | |
The code is still not perfect and rely on a yet unreleased
nss_ldap package that fix dns discovery problems within nss_ldap
itself.
Also the manipulation of krb5.conf need to be improved
|
| | |
| |
| |
| | |
we need to access the generated keytabs
|
| | | |
|
| | |
| |
| |
| |
| |
| |
| |
| | |
or something very close to this one
Add default groups and admin user
TODO: need to discuss more in deep uid/gid generation, this will
probably change as soon as the DNA plugin is activated
|
| |\| |
|
| | |
| |
| |
| |
| |
| |
| |
| | |
removes the need for LDIF conversion. It will make TurboGears direct
code faster, but should keep xmlrpc about the same speed.
The patch also swaps out ldap.cidict for the IPA CIDict class. IPA code
should only use the CIDict class now.
|
| | |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
- "configurable" fields to search on
- tokenize search words
- prioritize exact matches over partial matches
- split match filter generation into a re-usable function.
Other updates:
- use finally block to return ldap connections
- update web gui to use new get_user methods
|
| | | |
|
| | |
| |
| |
| | |
Put a try/except around attempts to determine user uniqueness
|
| |/ |
|
| |
|
|
|
|
| |
This version of the cidict extends the dict class, which allows it to
play nicely with turbogears.
Also includes extensive tests.
|
| |
|
|
|
|
|
|
|
| |
Create separate object for Users and Groups (using same base class)
Check for uniqueness before adding new users and groups
Remove user_container from everything but add operations
Abstract out a number of functions that are common across users and groups
Make sure all strings passed in to be in a filter are checked
Add new error message: No modifications specified
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
rpcclient.py must call XML-RPC functions with all arguments.
Removed encode_args and decode_args. They were the source of most of the
argument pain. Now opts is alwyas appended to the end of the arguments
so MUST be the last argument in any server-side function (can be None)
Allow the User object to handle unicode data
Small fixes to command-line tools to be friendlier
Broke out get_user() into get_user_by_dn() and get_user_by_uid()
Need to request more than just 'nsAccountLock' attribute when trying to
see if a user is already marked deleted. If it is blank the record
coming back is empty. Add 'uid' to the list to guarantee something coming
back (dn is handled specially)
Added user_container attribute to get_user_* and add_user so the caller
can specify where in the tree the user will be searched for/added.
Added global default value for user_container
|
| | |
|
| |
|
|
|
|
| |
Move LDAPError trapping/conversion into the ipaldap module.
Fix xmlrpc layer to encode/decode ipaerrors properly.
Also, implement mid-air collision exception for updates.
|
| | |
|
| |
|
|
| |
comparisons
|
| | |
|
| |
|
|
| |
Remove list users link.
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
| |
object. Based on rcrit's original patch.
Push scalar to list value conversion inside funcs.py.
|
| |
|
|
|
| |
fix update to set 'cn' instead of 'sn'.
remove str() in funcs.add_user().
|
| | |
|
| |
|
|
|
|
| |
Change unattended flag to be -U
Change master password flag to be -P instead of -m
Improve ipa-client-install readability for user prompts
|
| |
|
|
|
|
|
| |
Remove all dependencies on mhash
Remove code optimizatrion from Makefiles, right now these are
developers targeted builds, so it is better to have debugging
symbols around
|
| | |
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
| |
Add hack to update cn using givenname+sn (for now).
Change funcs.find_users() to not error if no results.
|
| |
|
|
| |
Add ':' into the edit/new/show pages.
|
| |\ |
|
| | | |
|
| |/
|
|
| |
This fixes install as well as /sbin/services does not hang anymore
|
| |
|
|
| |
Updated freeipa-python to depend on PyKerberos package.
|
| |\ |
|
| | |
| |
| |
| |
| |
| | |
Fix fields to be lowercase in web gui (server now returns them lowercase).
Fix ipaclient.py to refer to lowercase fields when adding a user.
Fix user.getValue() to check isinstance(value,list) instead of value[0].
|
