[Freeipa-devel] [PATCH 0159] Tests: fix test_forward_zones in test_xmlrpc/test_dns_plugin

Hello, this is the last patch necessary to get all test_xmlrpc/test_dns_plugin tests to pass! (I hope :-) Tests: fix test_forward_zones in test_xmlrpc/test_dns_plugin Class test_forward_zones in ipatests/test_xmlrpc/test_dns_plugin was using DNS zone 'fwzone2.test.' and expected to

[Freeipa-devel] Updated External EPEL CentOS 7 COPR builds are now available . . .

An updated external EPEL CentOS 7 COPR repo is now available which contains the latest Dogtag 10.3.3-5, tomcatjss, and jss builds: * https://copr.fedorainfracloud.org/coprs/g/pki/10.3.3/repo/epel-7/group_pki-10.3.3-epel-7.repo [group_pki-10.3.3] name=Copr repo for 10.3.3 owned by @pki

Re: [Freeipa-devel] [PATCH 0003][Tests] Fix for integration tests replication layouts

On 9.8.2016 16:55, Ganna Kaihorodova wrote: > Hello! > > Domain level 0 doesn't allow to create replica file on CA master, testcase > was skipped with Domain level 0 You mean on CA-less master, right? Petr^2 Spacek > https://fedorahosted.org/freeipa/ticket/6134 -- Manage your subscription

Re: [Freeipa-devel] [PATCH] 0090, 0092..0094 cert-show: show subject alternative names

On 12.8.2016 11:33, Jan Cholasta wrote: > On 4.8.2016 18:18, Petr Vobornik wrote: >> On 07/22/2016 07:13 AM, Fraser Tweedale wrote: >>> On Tue, Jul 19, 2016 at 08:50:34AM +0200, Jan Cholasta wrote: Hi, On 14.7.2016 13:44, Fraser Tweedale wrote: > Hi all, > > The attached

Re: [Freeipa-devel] [DESIGN][UPDATE] Time-Based HBAC Policies

On 11.8.2016 12:34, Stanislav Laznicka wrote: > Hello, > > I updated the design of the Time-Based HBAC Policies according to the > discussion we led here earlier. Please check the design page > http://www.freeipa.org/page/V4/Time-Based_Account_Policies. The biggest > changes are in the

[Freeipa-devel] [PATCH 0158] DNS: allow to add forward zone to already broken sub-domain

Hello, DNS: allow to add forward zone to already broken sub-domain Errors during DNS resolution might indicate that forwarder is the necessary configuration which is missing. Now we disallow adding a forwarder only if the zone is normally resolvable without the forwarder.

Re: [Freeipa-devel] [Test][patch-0058] Fixed topology tests failures in CI

On 12.08.2016 15:48, Oleg Fayans wrote: Hi Martin, On 08/11/2016 10:05 AM, Martin Basti wrote: On 10.08.2016 20:32, Oleg Fayans wrote: Hello, before we jump into fixing tests, my question is: Was this planned change and not reflected by test, or switched values are unwanted side

Re: [Freeipa-devel] [Test][patch-0058] Fixed topology tests failures in CI

Hi Martin, On 08/11/2016 10:05 AM, Martin Basti wrote: On 10.08.2016 20:32, Oleg Fayans wrote: Hello, before we jump into fixing tests, my question is: Was this planned change and not reflected by test, or switched values are unwanted side effect and thus bug for us? That's a

Re: [Freeipa-devel] [PATCH 0003][Tests] Fix for integration tests replication layouts

Hello! Thank you for review Attached fixed patch Best regards, Ganna Kaihorodova Associate Software Quality Engineer - Original Message - From: "Martin Basti" To: "Ganna Kaihorodova" , "freeipa-devel" Sent: Thursday,

Re: [Freeipa-devel] [PATCH] 0004 Added support for authentication with user certificate

On 08/12/2016 02:54 PM, Tibor Dudlak wrote: > Hi, > > I have edited my previous patch. > > On Thu, Aug 11, 2016 at 11:52 AM, Jan Cholasta > wrote: > > Hi, > > On 11.8.2016 09:55, Tibor Dudlak wrote: > > Hi, > > ... >

[Freeipa-devel] [PATCH] 0004 Added support for authentication with user certificate

Hi, I have edited my previous patch. On Thu, Aug 11, 2016 at 11:52 AM, Jan Cholasta wrote: > Hi, > > On 11.8.2016 09:55, Tibor Dudlak wrote: > >> Hi, >> >> ... >> > > +class login_x509(login_kerberos, KerberosSession, HTTP_Status): > +key = '/session/login_x509' > >

[Freeipa-devel] [PATCH 0433-0434] Fix zone removal to respect forward configuration inheritance + Remove preserve_forwarding parameter from ldap_delete_zone2()

Hello, please review attached patch set. It fixes https://fedorahosted.org/bind-dyndb-ldap/ticket/167 The code is also available on Github: https://github.com/pspacek/bind-dyndb-ldap/tree/fix_root_zone_removal Patched SRPM:

[Freeipa-devel] [PATCH 0063] Raise error on topology disconnect/last-role-host removal during server uninstall

Hello, topology disconnect/last-role-host removal errors would just be logged during server uninstall even if ignore options are not present. The host would still appear in the topology even after "successful" uninstall. https://fedorahosted.org/freeipa/ticket/6168 From

Re: [Freeipa-devel] [PATCH] 0090, 0092..0094 cert-show: show subject alternative names

On 4.8.2016 18:18, Petr Vobornik wrote: On 07/22/2016 07:13 AM, Fraser Tweedale wrote: On Tue, Jul 19, 2016 at 08:50:34AM +0200, Jan Cholasta wrote: Hi, On 14.7.2016 13:44, Fraser Tweedale wrote: Hi all, The attached patch includes SANs in cert-show output. If you have certs with esoteric

Re: [Freeipa-devel] [PATCHES 681-682] cert: speed up cert-find, do not crash on invalid data in cert-find

On 12.08.2016 08:29, Jan Cholasta wrote: On 11.8.2016 19:43, Martin Basti wrote: On 11.08.2016 16:09, Jan Cholasta wrote: On 11.8.2016 14:27, Martin Basti wrote: On 01.08.2016 10:27, Jan Cholasta wrote: On 1.8.2016 10:19, Jan Cholasta wrote: Hi, the attached patches fix

Re: [Freeipa-devel] [PATCHES 681-682] cert: speed up cert-find, do not crash on invalid data in cert-find

On 11.8.2016 19:43, Martin Basti wrote: On 11.08.2016 16:09, Jan Cholasta wrote: On 11.8.2016 14:27, Martin Basti wrote: On 01.08.2016 10:27, Jan Cholasta wrote: On 1.8.2016 10:19, Jan Cholasta wrote: Hi, the attached patches fix and