On Mon, 2012-01-30 at 14:41 -0500, Rob Crittenden wrote:
Rob Crittenden wrote:
Jakub Hrozek wrote:
On Mon, Jan 30, 2012 at 02:51:42PM +0100, Martin Kosek wrote:
On Thu, 2012-01-19 at 16:56 -0500, Rob Crittenden wrote:
There is a --parentmap option in automountmap-add-indirect. This is
https://fedorahosted.org/freeipa/ticket/2255
https://fedorahosted.org/freeipa/ticket/2286
https://fedorahosted.org/freeipa/ticket/2305
Added checking of existence of groups that are specified in permission
and delegation module. Also the permission plugin now allows to unset
memberof value.
On Fri, 2012-02-03 at 16:22 -0500, Rob Crittenden wrote:
Martin Kosek wrote:
On Tue, 2012-01-31 at 15:38 +0100, Martin Kosek wrote:
On Mon, 2012-01-30 at 11:22 -0500, Rob Crittenden wrote:
Martin Kosek wrote:
An example of the improved help:
# ipa help user-add
Purpose: Add a new
On 02/05/2012 06:56 PM, John Dennis wrote:
On 01/25/2012 09:16 AM, Rob Crittenden wrote:
John Dennis wrote:
On 01/23/2012 06:15 PM, John Dennis wrote:
Rebased patch attached (includes contents of previous patch 60).
The issues with ipa_memcached belonged to patch 59, that patch was
rebased
Hello list! Here is my first patch; hopefully I got the formatting and
patch submission process right. And the patch, of course.
The --group and --membergroup options were switched in `ipa help
delegation`. This patch fixes the example.
https://fedorahosted.org/freeipa/ticket/2317
From
On Fri, 2012-02-03 at 16:07 +0100, Martin Kosek wrote:
On Fri, 2012-02-03 at 09:55 -0500, Rob Crittenden wrote:
Martin Kosek wrote:
These two situations in netgroup-add need to be distinguished:
1) Netgroup cannot be added because a hostgroup with the same name
created a
On Wed, 2012-02-01 at 16:45 -0500, Rob Crittenden wrote:
We had code all over the place to handle adding and removing external
members from a variety of attributes. I consolidated these all into two
functions in baseldap.py.
This obsoletes my patch 920 but this patch includes the improved
On Mon, 2012-02-06 at 13:44 +0100, Petr Viktorin wrote:
Hello list! Here is my first patch; hopefully I got the formatting and
patch submission process right. And the patch, of course.
The --group and --membergroup options were switched in `ipa help
delegation`. This patch fixes the
ipasshpubkey attribute was added to user and host details pages.
New widget for ssh public keys was created.
Static preview:
http://pvoborni.fedorapeople.org/ssh/#identity=usernavigation=identityuser-facet=defaultuser-pkey=aortiz
https://fedorahosted.org/freeipa/ticket/2340
--
Petr Vobornik
Martin Kosek wrote:
On Wed, 2012-02-01 at 16:45 -0500, Rob Crittenden wrote:
We had code all over the place to handle adding and removing external
members from a variety of attributes. I consolidated these all into two
functions in baseldap.py.
This obsoletes my patch 920 but this patch
On Mon, 2012-02-06 at 09:28 -0500, Rob Crittenden wrote:
Martin Kosek wrote:
On Wed, 2012-02-01 at 16:45 -0500, Rob Crittenden wrote:
We had code all over the place to handle adding and removing external
members from a variety of attributes. I consolidated these all into two
functions in
This fixes the name of the --entry option in the man page
(https://fedorahosted.org/freeipa/ticket/2277), and adds options that
were missing.
From 69836c87eb5f4bcee1664dcc0cf71c53862f7341 Mon Sep 17 00:00:00 2001
From: Petr Viktorin pvikt...@redhat.com
Date: Mon, 6 Feb 2012 07:59:47 -0500
On Fri, 2012-02-03 at 16:58 -0500, Rob Crittenden wrote:
There is some validation that we only need to apply when an entry is
being created, namely the key itself. This is to allow us to manage an
otherwise illegal entry that finds its way into the system (i.e. migration).
Consider this.
Petr Viktorin wrote:
This fixes the name of the --entry option in the man page
(https://fedorahosted.org/freeipa/ticket/2277), and adds options that
were missing.
I think Martin noticed while looking at one of my patches that we
shouldn't be calling:
config.add_standard_options(parser)
John Dennis wrote:
On 01/25/2012 09:12 AM, Rob Crittenden wrote:
John Dennis wrote:
This patch supersedes the previous patch, it corrects two issue Rob
raised in a later patch review
The fixed issues are:
* spec file did not install ipa_memcached SysV initscript on SvsV
systems.
* Typo in
On Mon, 2012-02-06 at 10:22 -0500, Rob Crittenden wrote:
Petr Viktorin wrote:
This fixes the name of the --entry option in the man page
(https://fedorahosted.org/freeipa/ticket/2277), and adds options that
were missing.
I think Martin noticed while looking at one of my patches that we
Updated patch attached.
On 02/04/2012 01:27 AM, Endi Sukma Dewata wrote:
On 2/2/2012 11:13 AM, Petr Vobornik wrote:
...
https://fedorahosted.org/freeipa/ticket/2195
Issues that need fixing:
1. When default user group is enabled, selecting the drop down list to
empty will generate an error:
On Mon, 2012-02-06 at 12:14 +0100, Ondrej Hamada wrote:
https://fedorahosted.org/freeipa/ticket/2255
https://fedorahosted.org/freeipa/ticket/2286
https://fedorahosted.org/freeipa/ticket/2305
Added checking of existence of groups that are specified in permission
and delegation module. Also
John Dennis wrote:
On 02/06/2012 10:26 AM, Rob Crittenden wrote:
John Dennis wrote:
On 01/25/2012 09:12 AM, Rob Crittenden wrote:
John Dennis wrote:
This patch supersedes the previous patch, it corrects two issue Rob
raised in a later patch review
The fixed issues are:
* spec file did not
On Tue, 2011-12-06 at 18:18 -0500, Rob Crittenden wrote:
Rob Crittenden wrote:
Ensure that we always use at least 56 for minssf when communicating with
389-ds. This will prevent someone from modifying /etc/openldap/ldap.conf
in a way to put all communication in the clear.
See the ticket
Martin Kosek wrote:
On Tue, 2011-12-06 at 18:18 -0500, Rob Crittenden wrote:
Rob Crittenden wrote:
Ensure that we always use at least 56 for minssf when communicating with
389-ds. This will prevent someone from modifying /etc/openldap/ldap.conf
in a way to put all communication in the clear.
On 02/06/2012 10:26 AM, Martin Kosek wrote:
On Mon, 2012-02-06 at 10:22 -0500, Rob Crittenden wrote:
Petr Viktorin wrote:
This fixes the name of the --entry option in the man page
(https://fedorahosted.org/freeipa/ticket/2277), and adds options that
were missing.
I think Martin noticed while
Dmitri Pal wrote:
On 02/06/2012 10:26 AM, Martin Kosek wrote:
On Mon, 2012-02-06 at 10:22 -0500, Rob Crittenden wrote:
Petr Viktorin wrote:
This fixes the name of the --entry option in the man page
(https://fedorahosted.org/freeipa/ticket/2277), and adds options that
were missing.
I think
rebased patch because it wouldn't apply to master
--
John Dennis jden...@redhat.com
Looking to carve out IT costs?
www.redhat.com/carveoutcosts/
From c11ca3aaed9dba7c2ac4b2de6b3eba8aeb641f53 Mon Sep 17 00:00:00 2001
From: John Dennis jden...@redhat.com
Date: Mon, 6 Feb 2012 13:15:06 -0500
Replicas weren't being added to the S4U2Proxy configuration so weren't
allowed to delegate tickets. This fixes things.
rob
freeipa-rcrit-941-replica.patch
Description: application/mbox
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
Alexander Bokovoy wrote:
Hi,
attached are three patches that differentiate current freeipa-2.1.4
builds in Fedora 16/Rawhide from upstream. These are primarily to
adopt to systemd and python-ldap changes.
1. freeipa-abbra-0040-inifiles-support.patch introduces a way to
modify sectioned
Martin Kosek wrote:
On Mon, 2012-01-30 at 11:52 -0500, Rob Crittenden wrote:
Martin Kosek wrote:
Adding reverse DNS record may be a time consuming task, especially
for IPv6 addresses. Having a way to automatically create a reverse
record when a forward record is created could speed up the
On Mon, 06 Feb 2012, Rob Crittenden wrote:
Seems to work ok, Fix this and you have ACK x3:
pylint error:
init/systemd/freeipa-systemd-upgrade:38: [E0602] Undefined variable
'IPAConfigError'
My fix:
+++ b/init/systemd/freeipa-systemd-upgrade
@@ -35,7 +35,7 @@ def
Jan Cholasta wrote:
Updated rebased the patches.
I have also attached a patch that Rob made:
[PATCH] Don't use sets when calculating the modlist so order is preserved.
This is for the LDAP updater in particular. When adding new schema order
can be important when one objectclass depends on
The SSSD is proud to announce the release of the first beta of SSSD
1.8.0, destined to become our next long-term maintenance (LTM) release.
As this is going to be a big release for us, we're looking for as much
help as we can get to regression-test and try out the new features
before our final
On 2/6/2012 9:56 AM, Petr Vobornik wrote:
Updated patch attached.
ACK and pushed to master and ipa-2-2. See the comments below.
1. When default user group is enabled, selecting the drop down list to
empty will generate an error: 'automemberdefaultgroup' is required. If
you click Cancel the
On 2/3/2012 6:28 PM, Endi Sukma Dewata wrote:
On 2/3/2012 4:43 AM, Petr Vobornik wrote:
Hard-coded labels in Automember UI have been moved into internal.py to
allow translation.
Note: should be final patch for #2195
https://fedorahosted.org/freeipa/ticket/2195
This is ACKed but it depends
32 matches
Mail list logo