Hi everyone,
Some people of our team are working on a simple tool (a PoC actually)
for FreeIPA [1].
The idea is to build a tool that can check the state of FreeIPA.
In the PoC we are only focusing on certificate related things.
What do we have until now? Ideas and some few lines of code. We
URL: https://github.com/freeipa/freeipa/pull/695
Author: MartinBasti
Title: #695: [4.4] Fix PKCS11 helper
Action: synchronized
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/695/head:pr695
git checkout pr695
From
URL: https://github.com/freeipa/freeipa/pull/695
Author: MartinBasti
Title: #695: [4.4] Fix PKCS11 helper
Action: edited
Changed field: title
Original value:
"""
Fix PKCS11 helper
"""
--
Manage your subscription for the Freeipa-devel mailing list:
URL: https://github.com/freeipa/freeipa/pull/695
Author: MartinBasti
Title: #695: Fix PKCS11 helper
Action: opened
PR body:
"""
Slots in HSM are not assigned statically, we have to chose proper
slot from token label.
Softhsm i2.2.0 changed this behavior and now slots can change over
time (it
URL: https://github.com/freeipa/freeipa/pull/694
Title: #694: RFC: implement local PKINIT deployment in server/replica install
MartinBasti commented:
"""
`upgrade and transitions between PKINIT configurations` does this cover:
- CA-less to CA-full upgrade?
- installed 4.4.4 --- upgraded --->
URL: https://github.com/freeipa/freeipa/pull/675
Author: MartinBasti
Title: #675: [4.5, master] Fix PKCS11 helper
Action: edited
Changed field: title
Original value:
"""
[WIP] Fix PKCS11 helper
"""
--
Manage your subscription for the Freeipa-devel mailing list:
URL: https://github.com/freeipa/freeipa/pull/675
Title: #675: [4.5, master] Fix PKCS11 helper
MartinBasti commented:
"""
In 50% cases DNSSEC works for me :-). Ready for review.
(The issue was unrelated to PKCS11, I had somehow broken machine probably)
"""
See the full comment at
URL: https://github.com/freeipa/freeipa/pull/693
Title: #693: [tests] collect audit.log for easier selinux investigation
Label: +ack
--
Manage your subscription for the Freeipa-devel mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-devel
Contribute to FreeIPA:
URL: https://github.com/freeipa/freeipa/pull/675
Author: MartinBasti
Title: #675: [WIP] Fix PKCS11 helper
Action: synchronized
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/675/head:pr675
git checkout pr675
From
URL: https://github.com/freeipa/freeipa/pull/694
Author: martbab
Title: #694: RFC: implement local PKINIT deployment in server/replica install
Action: opened
PR body:
"""
This PR implements a basic local PKINIT functionality for server install with
'--no-pkinit' specified, and replica install
URL: https://github.com/freeipa/freeipa/pull/694
Author: martbab
Title: #694: RFC: implement local PKINIT deployment in server/replica install
Action: edited
Changed field: body
Original value:
"""
This PR implements a basic local PKINIT functionality for server install with
'--no-pkinit'
URL: https://github.com/freeipa/freeipa/pull/675
Author: MartinBasti
Title: #675: [WIP] Fix PKCS11 helper
Action: synchronized
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/675/head:pr675
git checkout pr675
From
URL: https://github.com/freeipa/freeipa/pull/688
Author: redhatrises
Title: #688: Update get_attr_filter in LDAPSearch to handle nsaccountlock user
searches
Action: synchronized
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa
URL: https://github.com/freeipa/freeipa/pull/693
Author: MartinBasti
Title: #693: [tests] collect audit.log for easier selinux investigation
Action: opened
PR body:
"""
Audit log contains useful information about selinux issues
"""
To pull the PR as Git branch:
git remote add ghfreeipa
URL: https://github.com/freeipa/freeipa/pull/688
Author: redhatrises
Title: #688: Update get_attr_filter in LDAPSearch to handle nsaccountlock user
searches
Action: edited
Changed field: body
Original value:
"""
- Update get_attr_filter in LDAPSearch to handle nsaccountlock by setting
URL: https://github.com/freeipa/freeipa/pull/688
Author: redhatrises
Title: #688: Update get_attr_filter in LDAPSearch to handle nsaccountlock user
searches
Action: synchronized
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa
URL: https://github.com/freeipa/freeipa/pull/667
Title: #667: idrange-add: properly handle empty --dom-name option
flo-renaud commented:
"""
@martbab
thank you for the suggestion. The new test is available in PR #692
"""
See the full comment at
URL: https://github.com/freeipa/freeipa/pull/691
Author: stlaz
Title: #691: Add force-join option to replica install
Action: synchronized
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/691/head:pr691
git checkout pr691
From
URL: https://github.com/freeipa/freeipa/pull/691
Author: stlaz
Title: #691: Add force-join option to replica install
Action: synchronized
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/691/head:pr691
git checkout pr691
From
URL: https://github.com/freeipa/freeipa/pull/667
Title: #667: idrange-add: properly handle empty --dom-name option
tomaskrizek commented:
"""
master:
* 70743c8c48db54309a09d510b3a5d8ae86c29e58 idrange-add: properly handle empty
--dom-name option
ipa-4-5:
*
URL: https://github.com/freeipa/freeipa/pull/667
Title: #667: idrange-add: properly handle empty --dom-name option
Label: +pushed
--
Manage your subscription for the Freeipa-devel mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-devel
Contribute to FreeIPA:
URL: https://github.com/freeipa/freeipa/pull/667
Author: flo-renaud
Title: #667: idrange-add: properly handle empty --dom-name option
Action: closed
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/667/head:pr667
git checkout
URL: https://github.com/freeipa/freeipa/pull/691
Author: stlaz
Title: #691: Add force-join option to replica install
Action: opened
PR body:
"""
This patchset adds the force-join option to the replica installer. It also
tries to improve the developer's experience by narrowing down the scope
URL: https://github.com/freeipa/freeipa/pull/687
Author: stlaz
Title: #687: Add pki_pin only when needed
Action: closed
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/687/head:pr687
git checkout pr687
--
Manage your
URL: https://github.com/freeipa/freeipa/pull/687
Title: #687: Add pki_pin only when needed
tomaskrizek commented:
"""
Replica installation with CA and KRA seems to work fine now.
"""
See the full comment at
https://github.com/freeipa/freeipa/pull/687#issuecomment-291786444
--
Manage your
URL: https://github.com/freeipa/freeipa/pull/687
Title: #687: Add pki_pin only when needed
Label: +pushed
--
Manage your subscription for the Freeipa-devel mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-devel
Contribute to FreeIPA: http://www.freeipa.org/page/Contribute/Code
URL: https://github.com/freeipa/freeipa/pull/687
Title: #687: Add pki_pin only when needed
tomaskrizek commented:
"""
master:
* 1aa77fe389e957a652c530ec0456ee05467754b3 Add pki_pin only when needed
ipa-4-5:
* f53c76b1055d4f7b26fc127852a66f942845cbae Add pki_pin only when needed
"""
See
URL: https://github.com/freeipa/freeipa/pull/687
Title: #687: Add pki_pin only when needed
Label: +ack
--
Manage your subscription for the Freeipa-devel mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-devel
Contribute to FreeIPA: http://www.freeipa.org/page/Contribute/Code
URL: https://github.com/freeipa/freeipa/pull/677
Author: HonzaCholasta
Title: #677: cert: defer cert-find result post-processing
Action: synchronized
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/677/head:pr677
git checkout
URL: https://github.com/freeipa/freeipa/pull/667
Title: #667: idrange-add: properly handle empty --dom-name option
martbab commented:
"""
@flo-renaud can you please add a test case for this to
`ipatests/test_xmlrpc/test_range_plugin.py` so that we do not regress in the
future?
"""
See the
URL: https://github.com/freeipa/freeipa/pull/672
Title: #672: IPA-KDB: use relative path in ipa-certmap config snippet
HonzaCholasta commented:
"""
master:
* 6c2772dde52c84024d32533b29e6cbd04c69924a IPA-KDB: use relative path in
ipa-certmap config snippet
ipa-4-5:
*
URL: https://github.com/freeipa/freeipa/pull/672
Author: sumit-bose
Title: #672: IPA-KDB: use relative path in ipa-certmap config snippet
Action: closed
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/672/head:pr672
git
URL: https://github.com/freeipa/freeipa/pull/672
Title: #672: IPA-KDB: use relative path in ipa-certmap config snippet
Label: +pushed
--
Manage your subscription for the Freeipa-devel mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-devel
Contribute to FreeIPA:
URL: https://github.com/freeipa/freeipa/pull/672
Title: #672: IPA-KDB: use relative path in ipa-certmap config snippet
Label: +ack
--
Manage your subscription for the Freeipa-devel mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-devel
Contribute to FreeIPA:
URL: https://github.com/freeipa/freeipa/pull/667
Title: #667: idrange-add: properly handle empty --dom-name option
stlaz commented:
"""
@flo-renaud That's completely OK :)
I thought we could probably add an assert to `CIDict.__contains__()` method
since I realize the issue was somewhere else
URL: https://github.com/freeipa/freeipa/pull/667
Title: #667: idrange-add: properly handle empty --dom-name option
Label: +ack
--
Manage your subscription for the Freeipa-devel mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-devel
Contribute to FreeIPA:
36 matches
Mail list logo