So, I have been working on this ipa_uuid plugin as of late and one of
the last tasks was to let it modify the RDN if ipaUniqueID is part of
the DN of an entry we want to create.
Example:
dn: ipauniqueid=autogenerate,cn=hbac,dc=...
cn: foo rule
hbactype: allow
...
'autogenerate' is the magic valu
On Tue, 26 Oct 2010 16:26:13 -0400
Adam Young wrote:
> I'll admit this would be useful, but it would be another process that
> we don't have now, that I was trying to avoid. We all have git repos
> on fedorapeople. The trick is to deal with patches that have to get
> changed prior to commit, h
On 10/26/2010 03:29 PM, Simo Sorce wrote:
On Tue, 26 Oct 2010 14:22:01 -0400
Adam Young wrote:
On 10/26/2010 02:08 PM, Simo Sorce wrote:
On Tue, 26 Oct 2010 13:40:11 -0400
Adam Young wrote:
We've been doing this informally for a while, and I think, if we
all agree to th
On 10/25/2010 8:39 PM, Adam Young wrote:
https://fedorahosted.org/freeipa/ticket/338
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel
ACKed and pushed to master.
--
Endi S. Dewata
_
Simo Sorce wrote:
On Tue, 26 Oct 2010 15:16:04 -0400
Rob Crittenden wrote:
Error out of configure when it finds some missing headers.
rob
ACK
pushed to master
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailm
On Tue, 26 Oct 2010 15:16:04 -0400
Rob Crittenden wrote:
> Error out of configure when it finds some missing headers.
>
> rob
ACK
--
Simo Sorce * Red Hat, Inc * New York
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com
On Tue, 26 Oct 2010 14:22:01 -0400
Adam Young wrote:
> On 10/26/2010 02:08 PM, Simo Sorce wrote:
> > On Tue, 26 Oct 2010 13:40:11 -0400
> > Adam Young wrote:
> >
> >
> >> We've been doing this informally for a while, and I think, if we
> >> all agree to the format, it will help keep track of
Error out of configure when it finds some missing headers.
rob
rcrit-freeipa-590-configure.patch
Description: application/mbox
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel
On 10/26/2010 01:59 PM, Rob Crittenden wrote:
Remove group nesting from the HBAC service groups.
ticket https://fedorahosted.org/freeipa/ticket/389
rob
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/f
On 10/26/2010 02:34 PM, Rob Crittenden wrote:
Don't allow managed groups to have group password policy.
UPG cannot have members and we use memberOf in class of service to
determine which policy to apply.
ticket https://fedorahosted.org/freeipa/ticket/160
rob
___
Don't allow managed groups to have group password policy.
UPG cannot have members and we use memberOf in class of service to
determine which policy to apply.
ticket https://fedorahosted.org/freeipa/ticket/160
rob
rcrit-freeipa-589-pwpolicy.patch
Description: application/mbox
___
On 10/26/2010 02:08 PM, Simo Sorce wrote:
On Tue, 26 Oct 2010 13:40:11 -0400
Adam Young wrote:
We've been doing this informally for a while, and I think, if we all
agree to the format, it will help keep track of patches, ACKs, and
commits.
1. Patch naming
Example patch name:
edewata-fre
On Tue, 26 Oct 2010 13:40:11 -0400
Adam Young wrote:
> We've been doing this informally for a while, and I think, if we all
> agree to the format, it will help keep track of patches, ACKs, and
> commits.
>
>
> 1. Patch naming
> Example patch name:
> edewata-freeipa-0019-Certificate-management
Remove group nesting from the HBAC service groups.
ticket https://fedorahosted.org/freeipa/ticket/389
rob
rcrit-freeipa-588-hbac.patch
Description: application/mbox
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailma
We've been doing this informally for a while, and I think, if we all
agree to the format, it will help keep track of patches, ACKs, and commits.
1. Patch naming
Example patch name:
edewata-freeipa-0019-Certificate-management-for-services.patch
Format: username-project-seq[-update]-descripti
Dmitri Pal wrote:
Dmitri Pal wrote:
Simo Sorce wrote:
On Wed, 20 Oct 2010 15:42:17 -0400
Dmitri Pal wrote:
Any suggestions what it should be?
Should we create a new attribute or there is something handy to reuse?
Probably makes sense to add a custom attribute, properly named.
Ok I
On 10/26/2010 09:41 AM, Simo Sorce wrote:
On Mon, 25 Oct 2010 20:38:04 -0400
Adam Young wrote:
removal of the whoami plugin
ACK
Pushed to master
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/
On Mon, 25 Oct 2010 14:26:47 -0400
Rob Crittenden wrote:
> Add entitlement plugin for counting client entitlements. This just
> adds the capability to tie to a candlepin server or manually import
> entitlement certificates. The code to use these to count clients is
> still under development.
>
On Mon, 25 Oct 2010 20:38:04 -0400
Adam Young wrote:
> removal of the whoami plugin
ACK
--
Simo Sorce * Red Hat, Inc * New York
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel
On Mon, 25 Oct 2010 20:27:04 -0400
Nalin Dahyabhai wrote:
> On Mon, Oct 25, 2010 at 06:59:18PM -0400, Simo Sorce wrote:
> > I was meaning to ask you if we have any other way around. Is it
> > possible to use a random salt instead of the principal name ?
> >
> > We do enforce pre-authentication b
20 matches
Mail list logo