DNSSEC: uninstallation

Tickets: https://fedorahosted.org/freeipa/ticket/3801 https://fedorahosted.org/freeipa/ticket/4417 Design: https://fedorahosted.org/bind-dyndb-ldap/wiki/BIND9/Design/DNSSEC Reviewed-By: Jan Cholasta <jcholast@redhat.com> Reviewed-By: David Kupka <dkupka@redhat.com>
author: Martin Basti <mbasti@redhat.com> 2014-10-16 16:36:58 +0200
committer: Martin Kosek <mkosek@redhat.com> 2014-10-21 12:23:03 +0200
commit: 21aef21fb5542e890851f2b9189daa13d168e3e7 (patch)
tree: 249191b2c4ee3025552aed16932114d235017bf9 /install/tools/ipa-server-install
parent: e798bad646f648748872a841f282462d28af795f (diff)
download: freeipa-21aef21fb5542e890851f2b9189daa13d168e3e7.tar.gz
freeipa-21aef21fb5542e890851f2b9189daa13d168e3e7.tar.xz
freeipa-21aef21fb5542e890851f2b9189daa13d168e3e7.zip
1 files changed, 23 insertions, 0 deletions
diff --git a/install/tools/ipa-server-install b/install/tools/ipa-server-install
index 005aec617..3ffd3b981 100755
--- a/install/tools/ipa-server-install
+++ b/install/tools/ipa-server-install
@@ -585,7 +585,16 @@ def uninstall():
     if ca_instance.is_configured():
         ca_instance.uninstall()
 
+    ods = opendnssecinstance.OpenDNSSECInstance(fstore)
+    if ods.is_configured():
+        ods.uninstall()
+
+    ods_exporter = odsexporterinstance.ODSExporterInstance(fstore)
+    if ods_exporter.is_configured():
+        ods_exporter.uninstall()
+
     bindinstance.BindInstance(fstore).uninstall()
+    dnskeysyncinstance.DNSKeySyncInstance(fstore).uninstall()
     httpinstance.HTTPInstance(fstore).uninstall()
     krbinstance.KrbInstance(fstore).uninstall()
     dsinstance.DsInstance(fstore=fstore).uninstall()
@@ -743,6 +752,20 @@ def main():
                    "agreements.\n\n")
             print textwrap.fill(msg, width=80, replace_whitespace=False)
         else:
+
+            # test if server is DNSSEC key master
+            masters = opendnssecinstance.get_dnssec_key_masters(conn)
+            if api.env.host in masters:
+                print "This server is active DNSSEC key master. Uninstall could break your DNS system."
+                if not (options.unattended or user_input("Are you sure you "
+                                                         "want to continue "
+                                                         "with the uninstall "
+                                                         "procedure?",
+                                                         False)):
+                    print ""
+                    print "Aborting uninstall operation."
+                    sys.exit(1)
+
             rm = replication.ReplicationManager(
                 realm=api.env.realm,
                 hostname=api.env.host,
author	Martin Basti <mbasti@redhat.com>	2014-10-16 16:36:58 +0200
committer	Martin Kosek <mkosek@redhat.com>	2014-10-21 12:23:03 +0200
commit	21aef21fb5542e890851f2b9189daa13d168e3e7 (patch)
tree	249191b2c4ee3025552aed16932114d235017bf9 /install/tools/ipa-server-install
parent	e798bad646f648748872a841f282462d28af795f (diff)
download	freeipa-21aef21fb5542e890851f2b9189daa13d168e3e7.tar.gz freeipa-21aef21fb5542e890851f2b9189daa13d168e3e7.tar.xz freeipa-21aef21fb5542e890851f2b9189daa13d168e3e7.zip