client: add support for pre-schema servers

Bundle remote plugin interface definitions for servers which lack API
schema support. These server API versions are included:
* 2.49: IPA 3.1.0 on RHEL/CentOS 6.5+,
* 2.114: IPA 4.1.4 on Fedora 22,
* 2.156: IPA 4.2.0 on RHEL/CentOS 7.2 and IPA 4.2.4 on Fedora 23,
* 2.164: IPA 4.3.1 on Fedora 23.

For servers with other API versions, the closest lower API version is used.

https://fedorahosted.org/freeipa/ticket/4739

Reviewed-By: David Kupka <dkupka@redhat.com>

1 files changed, 63 insertions, 0 deletions

diff --git a/ipaclient/remote_plugins/2_164/pkinit.py b/ipaclient/remote_plugins/2_164/pkinit.py
new file mode 100644
index 000000000..fcb4c6b6b
--- /dev/null
+++ b/ipaclient/remote_plugins/2_164/pkinit.py
@@ -0,0 +1,63 @@
+#
+# Copyright (C) 2016  FreeIPA Contributors see COPYING for license
+#
+
+# pylint: disable=unused-import
+import six
+
+from . import Command, Method, Object
+from ipalib import api, parameters, output
+from ipalib.parameters import DefaultFrom
+from ipalib.plugable import Registry
+from ipalib.text import _
+from ipapython.dn import DN
+from ipapython.dnsutil import DNSName
+
+if six.PY3:
+    unicode = str
+
+__doc__ = _("""
+Kerberos pkinit options
+
+Enable or disable anonymous pkinit using the principal
+WELLKNOWN/ANONYMOUS@REALM. The server must have been installed with
+pkinit support.
+
+EXAMPLES:
+
+ Enable anonymous pkinit:
+  ipa pkinit-anonymous enable
+
+ Disable anonymous pkinit:
+  ipa pkinit-anonymous disable
+
+For more information on anonymous pkinit see:
+
+http://k5wiki.kerberos.org/wiki/Projects/Anonymous_pkinit
+""")
+
+register = Registry()
+
+
+@register()
+class pkinit(Object):
+    takes_params = (
+    )
+
+
+@register()
+class pkinit_anonymous(Command):
+    __doc__ = _("Enable or Disable Anonymous PKINIT.")
+
+    takes_args = (
+        parameters.Str(
+            'action',
+        ),
+    )
+    takes_options = (
+    )
+    has_output = (
+        output.Output(
+            'result',
+        ),
+    )