This uses an enhanced memberof plugin that allows multiple attributes
to be configured to create memberOf attributes.

This patch requires a new 389-ds-base, 1.2.7. This is currently only available in updates-testing.

tickets 109 and 110

To validate:

# ipa user-add --first=Jim --last=User juser
# ipa netgroup-add --desc=netgroup net1
# ipa netgroup-add-member --users=juser --hosts=`hostname` net1
# ipa netgroup-show net1 (should have the host and user as members)
# ipa user-show juser (should have Member of netgroups)
# ipa host-show `hostname` (should have Member of netgroups)

rob
>From e899c77b3f90729cfcb17fe072c138ee34ac21a6 Mon Sep 17 00:00:00 2001
From: Rob Crittenden <rcrit...@redhat.com>
Date: Fri, 19 Nov 2010 11:16:23 -0500
Subject: [PATCH] Display user and host membership in netgroups.

This uses an enhanced memberof plugin that allows multiple attributes
to be configured to create memberOf attributes.

tickets 109 and 110
---
 install/share/memberof-conf.ldif |    6 ++++++
 ipa.spec.in                      |    7 +++++--
 ipalib/plugins/host.py           |    2 +-
 3 files changed, 12 insertions(+), 3 deletions(-)

diff --git a/install/share/memberof-conf.ldif b/install/share/memberof-conf.ldif
index 189e16a..79ad647 100644
--- a/install/share/memberof-conf.ldif
+++ b/install/share/memberof-conf.ldif
@@ -2,4 +2,10 @@ dn: cn=MemberOf Plugin,cn=plugins,cn=config
 changetype: modify
 replace: nsslapd-pluginenabled
 nsslapd-pluginenabled: on
+-
+add: memberofgroupattr
+memberofgroupattr: memberUser
+-
+add: memberofgroupattr
+memberofgroupattr: memberHost
 
diff --git a/ipa.spec.in b/ipa.spec.in
index 5a3ea2b..b43aa8e 100644
--- a/ipa.spec.in
+++ b/ipa.spec.in
@@ -23,7 +23,7 @@ Source0:        freeipa-%{version}.tar.gz
 BuildRoot:      %{_tmppath}/%{name}-%{version}-%{release}-root-%(%{__id_u} -n)
 
 %if ! %{ONLY_CLIENT}
-BuildRequires:  389-ds-base-devel >= 1.2.6
+BuildRequires:  389-ds-base-devel >= 1.2.7
 BuildRequires:  mozldap-devel
 BuildRequires:  svrcore-devel
 BuildRequires:  nspr-devel
@@ -64,7 +64,7 @@ Requires: %{name}-python = %{version}-%{release}
 Requires: %{name}-client = %{version}-%{release}
 Requires: %{name}-admintools = %{version}-%{release}
 Requires(post): %{name}-server-selinux = %{version}-%{release}
-Requires: 389-ds-base >= 1.2.6
+Requires: 389-ds-base >= 1.2.7
 Requires: openldap-clients
 Requires: nss
 Requires: nss-tools
@@ -502,6 +502,9 @@ fi
 %endif
 
 %changelog
+* Fri Nov 19 2010 Rob Crittenden <rcrit...@redhat.com> - 1.99-32
+- Set minimum level of 389-ds-base to 1.2.7 for enhanced memberof plugin
+
 * Wed Nov  3 2010 Rob Crittenden <rcrit...@redhat.com> - 1.99-31
 - remove ipa-fix-CVE-2008-3274
 
diff --git a/ipalib/plugins/host.py b/ipalib/plugins/host.py
index 5aad4ba..dfbc13e 100644
--- a/ipalib/plugins/host.py
+++ b/ipalib/plugins/host.py
@@ -362,7 +362,7 @@ class host_show(LDAPRetrieve):
     """
     Display information about a host.
     """
-    has_output_params = (
+    has_output_params = LDAPRetrieve.has_output_params + (
         Flag('has_keytab',
             label=_('Keytab'),
         ),
-- 
1.7.2.1

_______________________________________________
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel

Reply via email to