On Fri, 2011-10-14 at 08:04 +0300, Alexander Bokovoy wrote:
On Fri, 14 Oct 2011, Rob Crittenden wrote:
Alexander Bokovoy wrote:
On Thu, 13 Oct 2011, Rob Crittenden wrote:
Added more detailed information on creating a winsync replica to the
ipa-replica-manage man page.
+Creating a
Hi,
document new option --preserve-sssd introduced when fixing ticket
1750.
--
/ Alexander Bokovoy
From bb98c30ddf8efad1a563529f1776ab1c8f097683 Mon Sep 17 00:00:00 2001
From: Alexander Bokovoy aboko...@redhat.com
Date: Fri, 14 Oct 2011 10:27:59 +0300
Subject: [PATCH] Document --preserve-sssd
Dne 13.10.2011 17:36, Rob Crittenden napsal(a):
Jan Cholasta wrote:
Also fixes a few issues in the unit tests. All of them now run
successfully.
https://fedorahosted.org/freeipa/ticket/1959
Honza
I think it would be better to use:
object.__setattr__(self, 'ca_host', self._select_ca())
On Fri, 14 Oct 2011, Jan Cholasta wrote:
Perform an HTTP request.
-if self.ca_host == None:
-self.ca_host = self._select_ca()
+if self.ca_host is None:
+object.__setattr__(self, 'ca_host', self._select_ca())
return
On Fri, 2011-10-14 at 10:33 +0300, Alexander Bokovoy wrote:
Hi,
document new option --preserve-sssd introduced when fixing ticket
1750.
ACK. Pushed to master, ipa-2-1.
Martin
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
Found when reviewing Alexander's man page patch 27.
Pushed to master, ipa-2-1 under the one-liner rule.
Martin
From 48b2353de5337719526e8d888a24b1293cb5d086 Mon Sep 17 00:00:00 2001
From: Martin Kosek mko...@redhat.com
Date: Fri, 14 Oct 2011 10:34:06 +0200
Subject: [PATCH] Fix ipa-client-install
Do at least a basic validation of DNS zone manager mail address.
Do not require '@' to be in the mail address as it is not used
in common DNS zone configuration (in bind for example) and people
may be used to configure it that way. '@' is always removed by the
installer before the DNS zone is
Hi,
this patch adds DNS service records for for Windows systems during the
setup of trust support.
Fixes https://fedorahosted.org/freeipa/ticket/1939.
bye,
Sumit
From 098f835edf3baedf2e69392909c9e725fde378f0 Mon Sep 17 00:00:00 2001
From: Sumit Bose sb...@redhat.com
Date: Thu, 13 Oct 2011
Pushed this under the 1-liner rule. This is needed so we change the
search limits.
rob
From 21a30679c278e13f79e974af27fd370a2c2b8ecf Mon Sep 17 00:00:00 2001
From: Rob Crittenden rcrit...@redhat.com
Date: Fri, 14 Oct 2011 08:36:38 -0400
Subject: [PATCH] Set min nvr of 389-ds-base to
Hi,
dictview is a new class in Python 2.7. We need to support older Python
versions and thus, use set instead.
--
/ Alexander Bokovoy
From 169210f725d753d0707c0ee05c659747193fd6e5 Mon Sep 17 00:00:00 2001
From: Alexander Bokovoy aboko...@redhat.com
Date: Fri, 14 Oct 2011 17:40:26 +0300
A client may configure ldap in any number of different places. If the
file exists we should update it.
You can test this by not installing nslcd on F-15 and install nss_ldap
instead. The resulting client install will not work.
rob
From 28d84ddf75a73e6965cdc81795f51e572d4aaddc Mon Sep 17
Alexander Bokovoy wrote:
Hi,
dictview is a new class in Python 2.7. We need to support older Python
versions and thus, use set instead.
ACK, pushed to master and ipa-2-1
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
On Fri, 2011-10-14 at 11:32 -0400, Rob Crittenden wrote:
A client may configure ldap in any number of different places. If the
file exists we should update it.
You can test this by not installing nslcd on F-15 and install nss_ldap
instead. The resulting client install will not work.
ACK.
On Fri, 14 Oct 2011, Sumit Bose wrote:
On Fri, Oct 14, 2011 at 12:15:57PM +0200, Sumit Bose wrote:
Hi,
this patch adds DNS service records for for Windows systems during the
setup of trust support.
Fixes https://fedorahosted.org/freeipa/ticket/1939.
bye,
Sumit
Alexander
Simo Sorce wrote:
On Fri, 2011-10-14 at 11:32 -0400, Rob Crittenden wrote:
A client may configure ldap in any number of different places. If the
file exists we should update it.
You can test this by not installing nslcd on F-15 and install nss_ldap
instead. The resulting client install will
On Mon, 2011-10-10 at 17:07 +0300, Alexander Bokovoy wrote:
On Mon, 10 Oct 2011, Alexander Bokovoy wrote:
rebased, updated package dependencies, and verified against
Fedora 16+updates-testing.
This patch is for ipa-2-1 branch. I need to do few cosmetic changes in
freeipa.spec.in to
Alexander Bokovoy wrote:
On Fri, 14 Oct 2011, Rob Crittenden wrote:
Handle an empty value in a name/value pair in config_replace_variables()
This would blow up if you tried to append a value to an entry that
looked like:
NAME=
Yes. ACK.
pushed to master and ipa-2-1
If the existing sssd.conf already has the domain configured we throw the
config away and start over.
rob
From 408505a67394ed4e61d6833c253d76516312214f Mon Sep 17 00:00:00 2001
From: Rob Crittenden rcrit...@redhat.com
Date: Fri, 14 Oct 2011 14:05:07 -0400
Subject: [PATCH] If our domain is
Martin Kosek wrote:
Do at least a basic validation of DNS zone manager mail address.
Do not require '@' to be in the mail address as it is not used
in common DNS zone configuration (in bind for example) and people
may be used to configure it that way. '@' is always removed by the
installer
Alexander Bokovoy wrote:
On Fri, 14 Oct 2011, Rob Crittenden wrote:
If the existing sssd.conf already has the domain configured we throw
the config away and start over.
ACK.
pushed to master and ipa-2-1
___
Freeipa-devel mailing list
On 10/14/2011 09:28 AM, John Dennis wrote:
[ I had a private email exchange with Rob concerning ticket 1201,
we've had a long standing issue with how certificates are exchanged
because in LDAP they are binary values. I told Rob I had a proof of
concept working and Rob sent me a code snippet
On Fri, 14 Oct 2011, Sumit Bose wrote:
Thank you for your comments, new version attached.
ACK from code reading. I'll try to test it once 2.1.3 is
released, if you don't mind.
--
/ Alexander Bokovoy
___
Freeipa-devel mailing list
When adding a hostgroup check for current existence of hostgroup and
netgroup
The netgroup gets added automatically so we need to check in advance for
it. But we also need to look for the hostgroup otherwise the error
message is confusing (netgroup already exists).
Also convert to using
On Fri, 2011-10-14 at 13:56 -0400, Simo Sorce wrote:
On Mon, 2011-10-10 at 17:07 +0300, Alexander Bokovoy wrote:
On Mon, 10 Oct 2011, Alexander Bokovoy wrote:
rebased, updated package dependencies, and verified against
Fedora 16+updates-testing.
This patch is for ipa-2-1 branch. I
On 10/14/2011 03:12 PM, Adam Young wrote:
I wonder if we need to keep the Binary format for some use cases. I
know that there are cases where the PKI code needs to expose
certificates to the browser as straight binary. But that would not go
through the XML or JSON RPCs. Keep in mind how to do
On Oct 7, 2011, at 11:14 AM, Simo Sorce wrote:
On Mon, 2011-10-03 at 18:17 -0400, Simo Sorce wrote:
On Mon, 2011-10-03 at 16:20 -0400, Simo Sorce wrote:
Newer 389ds servers have a new option to have a different set of
filtered attributes from normal replication.
This has been added in
26 matches
Mail list logo