summaryrefslogtreecommitdiffstats
path: root/ipalib/rpc.py
Commit message (Collapse)AuthorAgeFilesLines
* Replace float with DecimalMartin Kosek2012-01-201-0/+4
| | | | | | | | | | | | | | | | | | | | Having float type as a base type for floating point parameters in ipalib introduces several issues, e.g. problem with representation or value comparison. Python language provides a Decimal type which help overcome these issues. This patch replaces a float type and Float parameter with a decimal.Decimal type in Decimal parameter. A precision attribute was added to Decimal parameter that can be used to limit a number of decimal places in parameter representation. This approach fixes a problem with API.txt validation where comparison of float values may fail on different architectures due to float representation error. In order to safely transfer the parameter value over RPC it is being converted to string which is then converted back to decimal.Decimal number on a server side. https://fedorahosted.org/freeipa/ticket/2260
* Require an HTTP Referer header in the server. Send one in ipa tools.Rob Crittenden2011-12-121-0/+3
| | | | | | | | | | This is to prevent a Cross-Site Request Forgery (CSRF) attack where a rogue server tricks a user who was logged into the FreeIPA management interface into visiting a specially-crafted URL where the attacker could perform FreeIPA oonfiguration changes with the privileges of the logged-in user. https://bugzilla.redhat.com/show_bug.cgi?id=747710
* Add a function for formatting network locations of the form host:port for ↵Jan Cholasta2011-10-051-2/+2
| | | | | | | | | use in URLs. If the host part is a literal IPv6 address, it must be enclosed in square brackets (RFC 2732). ticket 1869
* Fix /usr/bin/ipa dupled server listMartin Kosek2011-09-221-1/+9
| | | | | | | | | Fix get_url_list() so that the configured master server is there just once. This fix lets /usr/bin/ipa try connecting to all IPA masters just once and not print confusing server list with dupled master. https://fedorahosted.org/freeipa/ticket/1817
* Test for forwarded Kerberos credentials cache in wsgi code.Rob Crittenden2011-05-181-1/+13
| | | | | | | | | We should more gracefully handle if the TGT has not been forwarded than returning a 500 error. Also catch and display KerberosErrors from ping() in the client better. ticket 1101
* Fallback to default locale (en_US) if env. setting is corrupt.Pavel Zuna2011-03-011-1/+5
|
* Send Accept-Language header over XML-RPC and translate on server.Pavel Zuna2011-03-011-3/+30
| | | | | Fix #904 Fix #917
* Set the default Int maxvalue to the maximum XML-RPC can handle.Rob Crittenden2011-01-181-1/+3
| | | | | | Also handle marshalling errors thrown by xmlrpclib more gracefully. ticket 770
* Change FreeIPA license to GPLv3+Jakub Hrozek2010-12-201-5/+5
| | | | | | | | | | The changes include: * Change license blobs in source files to mention GPLv3+ not GPLv2 only * Add GPLv3+ license text * Package COPYING not LICENSE as the license blobs (even the old ones) mention COPYING specifically, it is also more common, I think https://fedorahosted.org/freeipa/ticket/239
* Handle regular socket errors gracefully in ipa commandRob Crittenden2010-10-151-0/+3
| | | | ticket 382
* Changes to fix compatibility with Fedora 14Rob Crittenden2010-08-311-3/+11
| | | | | | | | | | | | Fedora 14 introduced the following incompatiblities: - the kerberos binaries moved from /usr/kerberos/[s]/bin to /usr/[s]bin - the xmlrpclib in Python 2.7 is not fully backwards compatible to 2.6 Also, when moving the installed host service principals: - don't assume that krbticketflags is set - allow multiple values for krbextradata ticket 155
* Add support for client failover to the ipa command-line.Rob Crittenden2010-08-161-13/+73
| | | | | | | | | | | | This adds a new global option to the ipa command, -f/--no-fallback. If this is included then just the server configured in /etc/ipa/default.conf is used. Otherwise that is tried first then all servers in DNS with the ldap SRV record are tried. Create a new Local() Command class for local-only commands. The help command is one of these. It shouldn't need a remote connection to execute. ticket #15
* use NSS for SSL operationsJohn Dennis2010-06-151-126/+7
|
* Connect the -v cli argument to the verbose flag in xmlrpclibRob Crittenden2010-06-031-2/+2
| | | | | | If you pass two -v to the ipa command you'll get the XML-RPC data in the output. This can be handy so you know exactly what went out over the wire.
* XML-RPC signature changeJason Gerard DeRose2010-03-301-1/+1
|
* Explicitly set verbosity off in the XML-RPC clientRob Crittenden2009-09-141-0/+1
| | | | | This is so I don't have to hunt for where to set this to True when doing low-level client debugging.
* Catch and handle HTTP exceptions (like 401, 404, etc)Rob Crittenden2009-07-151-1/+3
|
* Add a local implementation of httplib.SSLFile and httplib.FakeSocketrcrit2009-07-011-2/+9
| | | | | | | Python 2.6 changed its internal implementation which makes it difficult to override in a way that is backwards compatible. 508953
* Rename errors2.py to errors.py. Modify all affected files.Pavel Zuna2009-04-231-9/+9
|
* Handle GSSAPI exceptions more gracefullyRob Crittenden2009-04-201-6/+28
|
* Use OpenSSL for SSL instead of the built-in python version.Rob Crittenden2009-02-201-3/+127
|
* Get merged tree into an installalble state.Rob Crittenden2009-02-031-1/+4
| | | | | | | | I have only tested the all, rpms and *clean targets directly. install may work but the rpm moves a lot of things around for us. The Apache configuration file isn't in its final state but it works with the new mod_python configuration.
* Finished small tweaks to get new ipaserver.xmlrpc() mod_python handler workingJason Gerard DeRose2009-02-031-0/+2
|
* Fixed bug I introduced in KerbTransport; started work on lite-xmlrpc.py to ↵Jason Gerard DeRose2009-02-031-2/+2
| | | | add client address to context
* Got new ldap connection working using Connectible.connect()Jason Gerard DeRose2009-02-031-5/+5
|
* Ported xmlclient to subclass from ConnectibleJason Gerard DeRose2009-02-031-22/+7
|
* Ported xmlserver to subclass from ExecutionerJason Gerard DeRose2009-02-031-1/+1
|
* Removed depreciated import of errors in frontend.pyJason Gerard DeRose2009-02-031-1/+3
|
* Added ServiceError (KerberosError) and make rpc.KerbTransport raise it if ↵Jason Gerard DeRose2009-02-031-2/+7
| | | | appropriate
* More xmlrpc tweaks: xmlserver.execute() now logs non-public exceptions; ↵Jason Gerard DeRose2009-02-031-1/+4
| | | | xmlclient.forward() now handles socket error; fixed some Python 2.4 problems in lite-xmlrpc2.py
* Further migration toward new xmlrcp code; fixed problem with unicode ↵Jason Gerard DeRose2009-02-031-5/+14
| | | | Fault.faultString; fixed problem where ServerProxy method was not called correctly
* Sundry work getting ready to switch to new XML-RPC client/server codeJason Gerard DeRose2009-02-031-1/+52
|
* Added rpc.xmlclient backend plugin for forwarding; added corresponding unit ↵Jason Gerard DeRose2009-01-191-0/+50
| | | | tests
* Added docstring cross-references between rpc and rpcserver modulesJason Gerard DeRose2009-01-161-2/+4
|
* Added docstrings to the new rpc.xml_dumps() and rcp.xml_loads() functionsJason Gerard DeRose2009-01-161-6/+57
|
* ipalib.rpc: now using allow_none=True after conversation with Rob; added ↵Jason Gerard DeRose2009-01-151-9/+27
| | | | xml_dumps() and xml_loads() functions; some name cleanup
* Started moving xmlrpc-functions from ipalib.util to ipalib.rpcJason Gerard DeRose2008-11-241-0/+86
generated by cgit (git 2.34.1) at 2025-09-02 23:31:33 +0000