[Freeipa-devel] [PATCH] 039 Delete the whole DNS record with no parameters

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi, as discussed in https://bugzilla.redhat.com/show_bug.cgi?id=671019 to delete a DNS RR one has to remove its record types one by one. This patch modifies the behaviour so that if the user runs dnsrecord-del zone record-name with no other

Re: [Freeipa-devel] [PATCH] admiyo-0153-rename-static-to-ui

- Original Message - I've been having problems with my lite-server install setup even before this patch. Can someone please test against the list server? I'm having a problem with the lite-server too, but it works fine with full server. Need to investigate further. ACK and pushed to

Re: [Freeipa-devel] [PATCH] 683 block anonymous access to hbac info

I think it is safe to give up member. It is necessary for nss_ldap and nis. If we remove member and add the role container I think that should cover the low hanging fruit that discloses authorization data. On 1/19/11 3:28 PM, Simo Sorce sso...@redhat.com wrote: On Wed, 19 Jan 2011 17:51:56

Re: [Freeipa-devel] [PATCH] 0064 Fix authentication for init scripts

On 1/19/11 3:31 PM, Simo Sorce sso...@redhat.com wrote: In order for ipactl to function even when anonymous access is disabled we need to authenticate. Use sASL/EXTERNAL to let root get access as a very low privileged special user. Ticket #795 This patch is a replacement of 0061 where I was

[Freeipa-devel] [PATCH] admiyo-0154-declarative-defintions

If you ACK, please don't push, but let me do so, as it will likely conflict with other UI work. From e41dd7e95a5fd6affd3dc05ac31b50ddcb2fb863 Mon Sep 17 00:00:00 2001 From: Adam Young ayo...@redhat.com Date: Wed, 19 Jan 2011 21:10:18 -0500 Subject: [PATCH] declarative defintions Delay the

Re: [Freeipa-devel] [PATCH] 0064 Fix authentication for init scripts

Simo Sorce wrote: In order for ipactl to function even when anonymous access is disabled we need to authenticate. Use sASL/EXTERNAL to let root get access as a very low privileged special user. Ticket #795 This patch is a replacement of 0061 where I was using SASL/GSSAPI Simo. ack

Re: [Freeipa-devel] [PATCH] 0065 Use ldapi with krb5kdc

NACK. Please retest this... I'm not sure how it is related, but I receive an error during the make rpm process: Traceback (most recent call last): File ./makeapi, line 27, in module from ipalib import * File /usr/src/freeipa/rpmbuild/BUILD/freeipa-2.0.0GITb9ad279/ipalib/__init__.py ,

Re: [Freeipa-devel] [PATCH] 0065 Use ldapi with krb5kdc

On 1/20/11 10:11 AM, Rob Crittenden rcrit...@redhat.com wrote: JR Aquino wrote: NACK. Please retest this... I'm not sure how it is related, but I receive an error during the make rpm process: Traceback (most recent call last): File ./makeapi, line 27, inmodule from ipalib import *

Re: [Freeipa-devel] [PATCH] admiyo-0154-declarative-defintions

On 1/20/2011 11:10 PM, Adam Young wrote: If you ACK, please don't push, but let me do so, as it will likely conflict with other UI work. There is no major issues, just some comments: 1. The declarative definition is a bit inconsistent. Some methods like association() takes a spec, but other

[Freeipa-devel] [PATCH] 0067 Fix dns_is_enabled command

Stupid typos broke it. Simo. -- Simo Sorce * Red Hat, Inc * New York From 52f887b2203baa649b9c259df7f902ebd2ecbbde Mon Sep 17 00:00:00 2001 From: Simo Sorce sso...@redhat.com Date: Thu, 20 Jan 2011 15:42:50 -0500 Subject: [PATCH] Fix dns_is_enabled command --- ipalib/plugins/dns.py |6

Re: [Freeipa-devel] [PATCH] 0065 Use ldapi with krb5kdc

On Thu, 20 Jan 2011 19:24:59 + JR Aquino jr.aqu...@citrix.com wrote: Patch works correctly. ACK thanks, pushed to master. Simo. -- Simo Sorce * Red Hat, Inc * New York ___ Freeipa-devel mailing list Freeipa-devel@redhat.com

Re: [Freeipa-devel] [PATCH] 0002-Main-UI-migration-and-html-Style-updates 0003-deleteing-migration-css

On 01/20/2011 04:22 PM, Kyle Baker wrote: UI Style Changes ___ Freeipa-devel mailing list Freeipa-devel@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-devel ACK In general, with a couple minor caveats: This duplicates the Font files and

Re: [Freeipa-devel] [PATCH] 039 Delete the whole DNS record with no parameters

Jakub Hrozek wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi, as discussed in https://bugzilla.redhat.com/show_bug.cgi?id=671019 to delete a DNS RR one has to remove its record types one by one. This patch modifies the behaviour so that if the user runs dnsrecord-del zone record-name

[Freeipa-devel] [PATCH] 685 basic filter tests for acis

An aci can take a filter as a target. This adds some bare minimum validation to it. It disallows empty filters and executes a search with the filter to see if it is at least well-formed (doesn't mean it will do what the user expects). Note that some odd looking things are actually valid

Re: [Freeipa-devel] [PATCH] 039 Delete the whole DNS record with no parameters

Michael Gregg wrote: Jakub Hrozek wrote: Hi, as discussed in https://bugzilla.redhat.com/show_bug.cgi?id=671019 to delete a DNS RR one has to remove its record types one by one. This patch modifies the behaviour so that if the user runs dnsrecord-del zone record-name with no other

Re: [Freeipa-devel] [PATCH] 039 Delete the whole DNS record with no parameters

On Thu, 20 Jan 2011 17:27:37 -0500 Dmitri Pal d...@redhat.com wrote: Michael Gregg wrote: Jakub Hrozek wrote: Hi, as discussed in https://bugzilla.redhat.com/show_bug.cgi?id=671019 to delete a DNS RR one has to remove its record types one by one. This patch modifies the behaviour