Re: [Freeipa-devel] [PATCH] 0010 Show full error message for selinuxusermap-add-hostgroup

On 07/18/2016 08:20 AM, Jan Cholasta wrote: Hi, On 7.7.2016 16:40, Florence Blanc-Renaud wrote: On 07/07/2016 01:23 PM, Petr Vobornik wrote: On 07/05/2016 02:38 PM, Florence Blanc-Renaud wrote: Hi, the output of ipa selinuxusermap-add-hostgroup and selinuxusermap-add-user does not display

Re: [Freeipa-devel] [PATCH 0025][Tests] RFE: External trust

On 07/18/2016 04:55 PM, Martin Babinsky wrote: On 07/14/2016 11:42 AM, Lenka Doudova wrote: On 07/13/2016 05:40 PM, Martin Babinsky wrote: On 07/01/2016 04:15 PM, Lenka Doudova wrote: On 07/01/2016 02:38 PM, Martin Babinsky wrote: On 07/01/2016 06:36 AM, Lenka Doudova wrote: On

Re: [Freeipa-devel] [PATCH 0003] Fix several small typos

On 14.7.2016 16:11, Ben Lipton wrote: > On 07/14/2016 04:09 AM, Alexander Bokovoy wrote: >> On Wed, 13 Jul 2016, Ben Lipton wrote: >>> Nothing too exciting, just fixes a few typos I've noticed in comments. >> ACK. However, please file a ticket and mention it in the commit message. Is it worth the

Re: [Freeipa-devel] [PATCH 0025][Tests] RFE: External trust

On 07/18/2016 04:59 PM, Lenka Doudova wrote: On 07/18/2016 04:55 PM, Martin Babinsky wrote: On 07/14/2016 11:42 AM, Lenka Doudova wrote: On 07/13/2016 05:40 PM, Martin Babinsky wrote: On 07/01/2016 04:15 PM, Lenka Doudova wrote: On 07/01/2016 02:38 PM, Martin Babinsky wrote: On

[Freeipa-devel] Using RPZ to overcome multi Kerberos domains and multiple DNS authorities.

IPA DNS configuration using Response Policy Zone (RPZ). IPA utilizes DNS extensively to locate service records (SRV) and text records (TXT) associated with the Kerberos realm. IPA also heavily require DNS A records and PTR records to function correctly. Normally all A,SRV,TXT,PTR records are part

Re: [Freeipa-devel] [PATCH] 963 unite log file name of ipa-ca-install

Hi, On 18.7.2016 18:50, Florence Blanc-Renaud wrote: On 07/15/2016 04:29 PM, Petr Vobornik wrote: ipa-ca-install said that it used /var/log/ipareplica-ca-install.log but in fact it used /var/log/ipaserver-ca-install.log This patch unites it to ipaserver-ca-install.log It was chosen

Re: [Freeipa-devel] [PATCH] 0089 caacl: expand plugin documentation

On Mon, Jul 18, 2016 at 09:55:21AM +0200, Martin Basti wrote: > > > On 13.07.2016 18:34, Petr Vobornik wrote: > > On 07/12/2016 08:45 AM, Alexander Bokovoy wrote: > > > On Tue, 12 Jul 2016, Fraser Tweedale wrote: > > > > Attached patch is a doc change, addressing > > > >

Re: [Freeipa-devel] [PATCH 0187] Use server API in com.redhat.idm.trust-fetch-domains oddjob helper

On Mon, 18 Jul 2016, Martin Babinsky wrote: https://fedorahosted.org/freeipa/ticket/6082 -- Martin^3 Babinsky From 990f29cbfb457c6179ffc0bed452dc358ba30d21 Mon Sep 17 00:00:00 2001 From: Martin Babinsky Date: Thu, 14 Jul 2016 09:31:22 +0200 Subject: [PATCH] Use server

Re: [Freeipa-devel] [PATCH] 0089 caacl: expand plugin documentation

On 13.07.2016 18:34, Petr Vobornik wrote: On 07/12/2016 08:45 AM, Alexander Bokovoy wrote: On Tue, 12 Jul 2016, Fraser Tweedale wrote: Attached patch is a doc change, addressing https://fedorahosted.org/freeipa/ticket/6002. Thanks, Fraser From 19c5fc60391d37c9d0500feb5d5d5a6628bc4d27 Mon

[Freeipa-devel] Please use https:// url for freeipa.git repo

It seems that access to upstream freeipa.git repo through Git protocol does not work (or was deliberately disabled by Fedora infra). Please use HTTPS for fetching/cloning/pulling/etc., so replace git://git.fedorahosted.org/git/freeipa.git with https://git.fedorahosted.org/git/freeipa.git in

Re: [Freeipa-devel] CA-less installs: passive certmonger - watch-and-warn mode

On 8.7.2016 15:59, Rob Crittenden wrote: Petr Spacek wrote: On 8.7.2016 15:31, Rob Crittenden wrote: Petr Spacek wrote: Hi, our docs

Re: [Freeipa-devel] [PATCH 0183] ipa-advise: correct handling of plugin namespace iteration

Hi, On 11.7.2016 14:18, Martin Babinsky wrote: https://fedorahosted.org/freeipa/ticket/6044 Note that you should use .name rather than .__name__ to get plugin names, otherwise the code won't work with plugins with non-default names. There currently aren't any Advice plugins with

Re: [Freeipa-devel] [PATCH] 0010 Show full error message for selinuxusermap-add-hostgroup

Hi, On 7.7.2016 16:40, Florence Blanc-Renaud wrote: On 07/07/2016 01:23 PM, Petr Vobornik wrote: On 07/05/2016 02:38 PM, Florence Blanc-Renaud wrote: Hi, the output of ipa selinuxusermap-add-hostgroup and selinuxusermap-add-user does not display any more the host/host group or user/group

Re: [Freeipa-devel] [PATCH 0552] Vault: enable client side plugins CLI

Hi, On 12.7.2016 16:03, Petr Vobornik wrote: On 07/12/2016 02:06 PM, Martin Babinsky wrote: On 07/08/2016 04:36 PM, Alexander Bokovoy wrote: On Fri, 08 Jul 2016, Martin Basti wrote: Patch attached. https://fedorahosted.org/freeipa/ticket/6035 From 2c97c316c1db49daeda15c709f082ee083a741ad

Re: [Freeipa-devel] CI DNS locations: basic test for SRV records

On 8.7.2016 14:01, Martin Basti wrote: > See commit message for details. Patch attached. > > > This test does not cover: > > * NTP service records > > * ipa-ca A/ records > > * ADTrust records > > Should I open tickets to cover cases above? ACK -- Petr^2 Spacek -- Manage your

Re: [Freeipa-devel] [PATCH] 0211-0212 Make sure --raw option works for trust-add

On 07/16/2016 12:50 PM, Alexander Bokovoy wrote: Hi, I had some time and was blocked by these bugs to do my tickets so I actually fixed these three problems that are assigned to Martin Babinsky. Hopefully, Martin wouldn't be offended by that. :) Note that this fix (patch 0211) has potential

Re: [Freeipa-devel] CI DNS locations: basic test for SRV records

On 18.07.2016 13:18, Petr Spacek wrote: On 8.7.2016 14:01, Martin Basti wrote: See commit message for details. Patch attached. This test does not cover: * NTP service records * ipa-ca A/ records * ADTrust records Should I open tickets to cover cases above? ACK Pushed to master:

Re: [Freeipa-devel] [PATCH] 0210 frontend: fix output validation for multiple type choices

On 07/18/2016 12:29 PM, Martin Babinsky wrote: On 07/18/2016 10:01 AM, Jan Cholasta wrote: Hi, On 16.7.2016 12:46, Alexander Bokovoy wrote: Hi, I had some time and was blocked by these bugs to do my tickets so I actually fixed these three problems that are assigned to Martin Babinsky.