Re: [Freeipa-devel] [PATCH 0065] Don't allow users to create tokens with a specified ID

Hi, Dne 16.9.2014 v 19:32 Nathaniel McCallum napsal(a): We perform this enforcement at the API level since: * DS level enforcement would be difficult * ipatokenUniqueID generation already happens at the API level It may be nice in the future to perform enforcement in the DS itself. However,

Re: [Freeipa-devel] [PATCH 0269] ipalib: host_del: Extend LDAPDelete's takes_options instead

On 09/16/2014 02:46 PM, Jan Cholasta wrote: Dne 16.9.2014 v 13:21 Tomas Babej napsal(a): Hi, The host-del command did not accept --continue option, since the takes_options was overriden and did not take the options from LDAPDelete. Fix the behaviour.

[Freeipa-devel] [PATCHES] 319-321 Build and packaging fixes

Hi, the attached patches fix https://fedorahosted.org/freeipa/ticket/4532, https://fedorahosted.org/freeipa/ticket/4533 and https://fedorahosted.org/freeipa/ticket/4536. Honza -- Jan Cholasta From 3efd3e88cbe2865c2c8114a89f4ae392cb30c20a Mon Sep 17 00:00:00 2001 From: Jan Cholasta

Re: [Freeipa-devel] [PATCH] 0003-2 User life cycle: new stageuser plugin with add verb

On 09/01/2014 01:08 PM, Petr Viktorin wrote: On 08/08/2014 03:54 PM, thierry bordaz wrote: Hi, The attached patch is related to 'User Life Cycle' (https://fedorahosted.org/freeipa/ticket/3813) It creates a stageuser plugin with a first function stageuser-add. Stage user entries are

Re: [Freeipa-devel] [PATCH 0065] Don't allow users to create tokens with a specified ID

On 09/17/2014 08:51 AM, Jan Cholasta wrote: Hi, Dne 16.9.2014 v 19:32 Nathaniel McCallum napsal(a): We perform this enforcement at the API level since: * DS level enforcement would be difficult * ipatokenUniqueID generation already happens at the API level It may be nice in the future to

Re: [Freeipa-devel] [PATCH] 0009 Detect and configure all usable IP addresses.

On 09/16/2014 06:09 PM, Martin Basti wrote: On 16/09/14 15:59, David Kupka wrote: ... 2) +# check that there is IP address in every reverse zone +if options.reverse_zones: +for rz in options.reverse_zones: +for ip in config.ip_addresses: +if

Re: [Freeipa-devel] [PATCHES] 319-321 Build and packaging fixes

On 09/17/2014 12:31 PM, Jan Cholasta wrote: +Conflicts: %{alt_name}-server-trust-ad +Obsoletes: %{alt_name}-server-trust-ad %{version}-%{release} Just one question - should we check also for %{release}? Generally, release number does not have much value, we could rebuild our version of the

Re: [Freeipa-devel] [PATCH] 0009 Detect and configure all usable IP addresses.

On 17/09/14 07:25, David Kupka wrote: 3) +elif options.reverse_zones or (not(options.no_reverse) and bindinstance.create_reverse()): OR operator, this will create additional zones (non-specified by user) even if user write NO When user specifies some reverse zone (using --reverse-zone)

Re: [Freeipa-devel] [PATCHES] 319-321 Build and packaging fixes

On Wed, 17 Sep 2014, Martin Kosek wrote: On 09/17/2014 12:31 PM, Jan Cholasta wrote: +Conflicts: %{alt_name}-server-trust-ad +Obsoletes: %{alt_name}-server-trust-ad %{version}-%{release} Just one question - should we check also for %{release}? Generally, release number does not have much

[Freeipa-devel] [PATCH 0297] Add log message about initial LDAP synchronization

Hello, Add log message about initial LDAP synchronization. -- Petr^2 Spacek From ce1b8f400d236d0da5b76c90ddc93adbf6980691 Mon Sep 17 00:00:00 2001 From: Petr Spacek pspa...@redhat.com Date: Wed, 17 Sep 2014 13:32:49 +0200 Subject: [PATCH] Add log message about initial LDAP synchronization.

Re: [Freeipa-devel] [PATCHES] 319-321 Build and packaging fixes

Dne 17.9.2014 v 13:07 Alexander Bokovoy napsal(a): On Wed, 17 Sep 2014, Martin Kosek wrote: On 09/17/2014 12:31 PM, Jan Cholasta wrote: +Conflicts: %{alt_name}-server-trust-ad +Obsoletes: %{alt_name}-server-trust-ad %{version}-%{release} Just one question - should we check also for

Re: [Freeipa-devel] [PATCH 0064] Create ipa-otp-decrement 389DS plugin

On 09/15/2014 09:05 PM, Nathaniel McCallum wrote: This plugin ensures that all counter/watermark operations are atomic and never decrement. Also, deletion is not permitted. https://fedorahosted.org/freeipa/ticket/4494 ___ Freeipa-devel mailing list

[Freeipa-devel] [PATCH] 323 Fix certmonger code causing the ca_renewal_master update plugin to fail

Hi, the attached patch fixes https://fedorahosted.org/freeipa/ticket/4547. Honza -- Jan Cholasta From 8606fad0b8fb26ccdb3cc843509d04316a87efbd Mon Sep 17 00:00:00 2001 From: Jan Cholasta jchol...@redhat.com Date: Wed, 17 Sep 2014 15:22:19 +0200 Subject: [PATCH] Fix certmonger code causing the

[Freeipa-devel] [PATCH 0271] baseldap: Properly handle the case of renaming object to the

Hi, When renaming a object to the same name, errors.EmptyModList is raised. This is not properly handled, and can cause other modifications in the LDAPUpdate command to be ignored. https://fedorahosted.org/freeipa/ticket/4548 -- Tomas Babej Associate Software Engineer | Red Hat | Identity

Re: [Freeipa-devel] [PATCH] [dyndb] Fix error handling in configure_view() to prevent deadlocks

On Tue 16 Sep 2014 07:32:39 PM CEST, Petr Spacek wrote: Hello, attached patches fix https://bugzilla.redhat.com/show_bug.cgi?id=1142150 https://bugzilla.redhat.com/show_bug.cgi?id=1142152 ... and improve related error messages. I will push it to https://github.com/spacekpe/bind-dynamic_db

Re: [Freeipa-devel] [PATCH 0271] baseldap: Properly handle the case of renaming object to the

Tomas Babej wrote: Hi, When renaming a object to the same name, errors.EmptyModList is raised. This is not properly handled, and can cause other modifications in the LDAPUpdate command to be ignored. https://fedorahosted.org/freeipa/ticket/4548 Needs some tests... rob