diff options
| author | Tomas Krizek <tkrizek@redhat.com> | 2016-11-09 09:52:28 +0100 |
|---|---|---|
| committer | Martin Basti <mbasti@redhat.com> | 2016-11-09 15:32:45 +0100 |
| commit | 33f7b8dc32bc95e0db067ac4df49807ee2b5120e (patch) | |
| tree | e1f618c363c372f46b35f39523a7e23967354e98 /install/certmonger | |
| parent | c0674e89d1e6b5abd82cf3b7bf8054eec0fa6418 (diff) | |
| download | freeipa-33f7b8dc32bc95e0db067ac4df49807ee2b5120e.tar.gz freeipa-33f7b8dc32bc95e0db067ac4df49807ee2b5120e.tar.xz freeipa-33f7b8dc32bc95e0db067ac4df49807ee2b5120e.zip | |
libexec scripts: ldap conn management
Certificate renewal scripts require connection to LDAP. Properly
handle connects and disconnects from LDAP.
https://fedorahosted.org/freeipa/ticket/6461
Reviewed-By: Florence Blanc-Renaud <frenaud@redhat.com>
Diffstat (limited to 'install/certmonger')
| -rwxr-xr-x | install/certmonger/dogtag-ipa-ca-renew-agent-submit | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/install/certmonger/dogtag-ipa-ca-renew-agent-submit b/install/certmonger/dogtag-ipa-ca-renew-agent-submit index f2b15cfa2..6f5841ee3 100755 --- a/install/certmonger/dogtag-ipa-ca-renew-agent-submit +++ b/install/certmonger/dogtag-ipa-ca-renew-agent-submit @@ -476,6 +476,7 @@ def main(): api.bootstrap(in_server=True, context='renew') api.finalize() + api.Backend.ldap2.connect() operation = os.environ.get('CERTMONGER_OPERATION') if operation not in ('SUBMIT', 'POLL'): @@ -506,6 +507,8 @@ def main(): finally: certs.renewal_lock.release() shutil.rmtree(tmpdir) + api.Backend.ldap2.disconnect() + try: sys.exit(main()) |