On Thu, Nov 11, 2010 at 07:36:22AM +0100, Jakub Hrozek wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 11/09/2010 08:01 PM, Rob Crittenden wrote:
Jakub Hrozek wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Instead of print and return, use sys.exit() to quit scripts
On Fri, Nov 19, 2010 at 11:20:23PM -0500, Rob Crittenden wrote:
In the client installer we fetch the CA from the IPA server. Wrap
this to catch any failures that might occur (like there is an
iptables rule denying access to the IPA server).
I tested this by shutting down the httpd service on
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 11/22/2010 02:36 PM, Simo Sorce wrote:
On Mon, 22 Nov 2010 13:58:40 +0100
Jakub Hrozek jhro...@redhat.com wrote:
On Mon, Nov 15, 2010 at 09:05:55PM -0500, Simo Sorce wrote:
Add code to detect the number of CPUs available at install time.
If
On 11/22/2010 09:25 AM, Jan Zelený wrote:
Some fields were missing from user object, this change adds them
along with their l10n
https://fedorahosted.org/freeipa/ticket/305
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 11/19/2010 04:09 PM, Endi Sukma Dewata wrote:
On 11/19/2010 2:56 PM, Stephen Gallagher wrote:
So we loose the possibility of saying: the last friday of the month ?
It's not impossible, it can still be done with this schema, though it's
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 11/19/2010 04:09 PM, Dmitri Pal wrote:
Stephen Gallagher wrote:
Breaking the thread intentionally to bring back focus.
With Adam's recent input, I've modified the grammar to what I hope will
be it's final form.
The complete grammar is
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 11/19/2010 08:17 PM, Rob Crittenden wrote:
Jakub Hrozek wrote:
This patch adds new options to the migration plugin:
* the option to fine-tune the objectclass of users or groups being
* imported
* the option to select the LDAP schema
Catch when retrieving the CA chain from dogtag fails and report a
friendlier error. Also don't try to free the XML document unless it has
been created.
To test this do an installation on F14 with a dogtag backend without
fixing the symbolic link from /usr/share/java/xalan-j2-serializer.jar to
Jan Zelený wrote:
Rob Crittendenrcrit...@redhat.com wrote:
Jan Zelený wrote:
Jan Zelenýjzel...@redhat.com wrote:
Now each plugin can define its topic as a 2-tuple, where the first
item is the name of topic it belongs to and the second item is
a description of such topic. Topic descriptions
On 11/19/2010 06:53 PM, Endi Sukma Dewata wrote:
On 11/19/2010 4:09 PM, Adam Young wrote:
This will not work with entities that do not have associated tabs,
e.g. hbacsvc, hbacsvcgroups, sudocmd, sudocmdgroups. For these
entities the IPA.tab_state() will return undefined, so the
On Thu, 18 Nov 2010 15:16:49 +0100
Jakub Hrozek jhro...@redhat.com wrote:
On Mon, Nov 08, 2010 at 10:14:18PM +0100, Jakub Hrozek wrote:
[PATCH 1/6] Common include file for SLAPI plugin logging
Consolidate the common logging macros into common/util.h and use
them in SLAPI plugins instead of
On Mon, 22 Nov 2010 16:04:51 +0100
Jakub Hrozek jhro...@redhat.com wrote:
This could have been shortened to Ack :-)
Pushed to master.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
Stephen Gallagher wrote:
I have updated the grammar page at
https://fedorahosted.org/sssd/wiki/HBAC_Grammar again.
The main changes made are these:
* Eliminate the arbitrary singular from monthly repetitions
* Add negative numbers for days of the month for counting from the end
* For
Adam Young wrote:
On 11/19/2010 06:53 PM, Endi Sukma Dewata wrote:
On 11/19/2010 4:09 PM, Adam Young wrote:
This will not work with entities that do not have associated tabs,
e.g. hbacsvc, hbacsvcgroups, sudocmd, sudocmdgroups. For these
entities the IPA.tab_state() will return undefined,
Dmitri Pal wrote:
Adam Young wrote:
On 11/19/2010 06:53 PM, Endi Sukma Dewata wrote:
On 11/19/2010 4:09 PM, Adam Young wrote:
This will not work with entities that do not have associated tabs,
e.g. hbacsvc, hbacsvcgroups, sudocmd, sudocmdgroups. For these
entities the
On 11/15/2010 05:21 AM, Jan Zelený wrote:
Jan Zelenyjzel...@redhat.com wrote:
Rob Crittendenrcrit...@redhat.com wrote:
Jan Zelený wrote:
Rob Crittendenrcrit...@redhat.com wrote:
Jan Zelený wrote:
I tried one other solution, but this approach was
On 11/18/2010 08:40 PM, Adam Young wrote:
On 11/17/2010 04:26 PM, Simo Sorce wrote:
On Tue, 16 Nov 2010 14:09:58 -0500
Simo Sorcesso...@redhat.com wrote:
This patch bumps up the default number of files allowed by default for
directory server. This allows more clients and also reserves a
On 11/19/2010 03:08 PM, Simo Sorce wrote:
On Thu, 11 Nov 2010 19:51:23 -0500
Simo Sorcesso...@redhat.com wrote:
With this patch 2 changes are introduced.
1. idranges are unified, the --uidstart and --gistart options are
removed and instead --idtsrat and --idmax are provided at install
Fixes #527
Simo.
--
Simo Sorce * Red Hat, Inc * New York
From ea5b717d0db97c33a62239319baddf80aeeb5dba Mon Sep 17 00:00:00 2001
From: Simo Sorce sso...@redhat.com
Date: Mon, 22 Nov 2010 13:29:56 -0500
Subject: [PATCH] Make pkinit setup optional in ipa-replica-prepare too.
Fixes:
Simo Sorce wrote:
Fixes #527
Simo.
There is no selfsign option in ipa-replica-prepare. At best you can
detect whether it is selfsigned by calling certs.ipa_self_signed()
rob
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 11/22/2010 12:22 PM, Dmitri Pal wrote
septet-of-the-month = interval 1-5
The septet is not used any more and should be removed, right?
Yeah, I missed removing that. I've deleted it from the page now.
day-of-the-month-interval = interval
On Mon, 22 Nov 2010 13:34:57 -0500
Simo Sorce sso...@redhat.com wrote:
Fixes #527
Simo.
A copypaste from ipa-server-install was a bit too optimistic.
Attached a new patch that actually works (tested).
Simo.
--
Simo Sorce * Red Hat, Inc * New York
From
Adam Young wrote:
On 11/19/2010 03:08 PM, Simo Sorce wrote:
On Thu, 11 Nov 2010 19:51:23 -0500
Simo Sorcesso...@redhat.com wrote:
With this patch 2 changes are introduced.
1. idranges are unified, the --uidstart and --gistart options are
removed and instead --idtsrat and --idmax are
I pushed this under the 1-liner rule.
Don't use full pathnames for kerberos binaries, let PATH find them.
Kerberos binaries may be in /usr/kerberos/*bin or /usr/*bin, let PATH
sort it out.
diff --git a/ipaserver/install/krbinstance.py
b/ipaserver/install/krbinstance.py
index
On 11/19/2010 12:21 PM, Endi Sukma Dewata wrote:
On 11/19/2010 11:18 AM, Dmitri Pal wrote:
Endi Sukma Dewata wrote:
On 11/19/2010 10:22 AM, Adam Young wrote:
ACK. However, you will need to rebase, as Rob already made the
index.html addition to ipa.spec.in
Thanks. Rebased and pushed to
periodic monthly on Wed during last 14
IMO it is cleaner and simpler and allows to express all the notions
we want to express.
See above. I really don't want intervals in the M-on grammar, since it
makes it extremely difficult to comprehend by mere mortals.
And
Hi,
During the conversation with Ben and Kyle today over the calendar screen
two things came up:
1) Time zone
2) Duration
Time zone
It makes perfect sense to allow the admin to enter the rule and specify
the time zone that the admin used to enter the time. Internally it will
be converted to UTC
27 matches
Mail list logo