| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
|
|
| |
If a site really wants it gone then can delete it via LDAP.
439281
|
| |
|
|
|
|
|
|
|
|
| |
current value to prevent unnecessary LPAP updates (and failed writes)
Don't check against these lists on updates, only add them on new entries.
Disable the ability to configure in the UI these values for now.
438256
|
| |
|
|
|
|
|
|
| |
The DS setup program uses Perl and does a similar port available test.
It seems that perl always sets FD_CLOEXEC and python does not. This is
why the port test would pass in python but fail in perl.
439024
|
| |
|
|
| |
439057
|
| |
|
|
|
|
| |
as a direct or indirect member.
438387
|
| | |
|
| | |
|
| |
|
|
|
|
|
|
|
|
| |
The memberOf attribute includes members that are directly in the group
via the "member" attribute and those that are included as a result of
being in a group that is in the group.
The UI needs to be able to distinguish between the two.
438706
|
| |
|
|
|
|
|
| |
Without this, an entry's memberOf attribute is not updated with
the new group DN when an indirect group is renamed.
This is in bugzilla for FDS as bz 438891.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
This is used when a new replica is created as well as whenever a replica
is re-initialized from another master.
In order for this to work when not creating an instance the __init__
function needs to be able to determine the suffix and the dm_password
is needed.
I've also added the time to the RDN of the member task to ensure
uniqueness.
438222
|
| |
|
|
|
|
|
|
|
| |
This runs the risk of showing too much and confusing users but on the other
hand it often includes required information detailing why the error
occurred such as what attribute the user lacks write access too and why
changing a password failed.
438057
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
To build a package one need to run autoconf and then create a tarball of the
RHEL4 directory so that the content is like this:
$ ls -1 ipa-client-0.99.0
aclocal.m4
AUTHORS
autom4te.cache
ChangeLog
configure
configure.ac
COPYING
INSTALL
install-sh
ipachangeconf.py
ipa-client-setup
ipa.conf
Makefile.am
Makefile.in
missing
NEWS
README
setup.py
the spec file will then be able to build a package for RHEL4
|
| |
|
|
| |
438222
|
| |
|
|
| |
438220
|
| |
|
|
| |
436501
|
| |
|
|
| |
438021
|
| |
|
|
|
|
|
|
|
|
| |
we do updates, so use the right terminology internally. Also fix the actual
field we update (and grant permission appropriately in delegations).
The DS password handles updating userPassword and any Samba passwords
as necessary.
438256
|
| |
|
|
|
|
|
| |
Start httpd after ipa_webgui becuse otherwise mod_proxy may not like it if it
can't connect to the UI listening port
438090
|
| | |
|
| |
|
|
|
|
|
| |
This is more kerberos-like and it doesn't hurt anything, we just won't
allow realms other than our own to be used.
437566
|
| |
|
|
|
|
|
| |
Add default exception handler to avoid backtraces in cmdline tools
Enhance error message when the IPA server or realm can't be found
437565
|
| |
|
|
|
|
|
| |
This function was assuming that the target list was all lower-case so the
set could end up with duplicate values which would get kicked out by LDAP.
433680
|
| |
|
|
|
|
| |
Fix for session code so RDN change can succeed
433523
|
| |
|
|
|
|
|
|
| |
Add ability to force a synch to occur
Clean up a lot of unused code in ipaldap.py. This lets us do a simple bind
without being root (it used to try to read dse.ldif)
436237
|
| |
|
|
|
|
| |
Don't ignore exceptions when getting the hostname from the user
433515
|
| | |
|
| |
|
|
|
|
| |
Return message on success
Avoid SASL output from being printed
Make sure the man page is up to date
|
| |
|
|
|
|
|
| |
Improve LDAP error reporting
Don't return the str() of discovery values because it can return "None"
436130
|
| | |
|
| |
|
|
|
| |
Remove the footer. It was a leftover from the original TurboGears-generated
project that Kevin McCarthy had modified.
|
| |
|
|
|
|
|
| |
If they have any delegations at all (are in editors group) they will have
these links.
433387
|
| |
|
|
| |
435713
|
| |
|
|
|
|
| |
match.
433515
|
| |
|
|
| |
429999
|
| |
|
|
| |
435949
|
| |
|
|
|
| |
from the realm not the domain.
One line fix.
|
| | |
|
| |
|
|
|
|
| |
Put installation log files into /var/log.
430024
|
| |
|
|
|
| |
Fix error in service principals where the service wasn't being removed before
doing the DNS lookup.
|
| |
|
|
|
|
| |
proper order.
435026
|
| |
|
|
| |
435134
|
| |
|
|
|
| |
default tree. This patch make sure that the DS setup script
does not add unwanted entries.
|
| |
|
|
| |
434980
|
| | |
|
| |
|
|
|
| |
Move imports into try/except so that ctrl-C can always be caught
Fix typo
|
| |
|
|
|
|
|
|
|
|
|
|
| |
edit things. We use the 'editors' group for this. This group itself grants
no permission other than displaying certain things in the UI.
In order to be in the editors group a user must be a member of a group that
is the source group in a delegation. The memberof plugin will do all the
hard work to be sure that a user's memberof contains cn=editors if they
are in a delegated group.
432874
|
| |
|
|
|
|
|
| |
possible to catch KeyboardInterrupt during the import process.
- Add function for handling python differences with GSSError
434798
|
| |
|
|
| |
433509
|
| |
|
|
| |
433880
|
