[Freeipa-devel] [PATCH 0062] Use delete/add for OTP counter/watermark updates

This prevents any local attempt at rapid token code replay. If two token codes hit the system at roughly the same moment, only the first write will succeed. All subsequent authentications will fail. This obviates the need for an OTP authentication lock. https://fedorahosted.org/freeipa/ticket/449

Re: [Freeipa-devel] [Patch] 0001-2 User Life Cycle: create containers and scoping DS plugins

On Thu, Aug 28, 2014 at 08:41:57PM +0200, thierry bordaz wrote: > On 08/28/2014 08:30 PM, Sumit Bose wrote: > >On Thu, Aug 28, 2014 at 07:26:51PM +0200, thierry bordaz wrote: > >>On 08/28/2014 06:51 PM, Sumit Bose wrote: > >>>On Thu, Aug 14, 2014 at 07:18:40PM +0200, thierry bordaz wrote: > Hel

Re: [Freeipa-devel] [Patch] 0001-2 User Life Cycle: create containers and scoping DS plugins

On 08/28/2014 08:30 PM, Sumit Bose wrote: On Thu, Aug 28, 2014 at 07:26:51PM +0200, thierry bordaz wrote: On 08/28/2014 06:51 PM, Sumit Bose wrote: On Thu, Aug 14, 2014 at 07:18:40PM +0200, thierry bordaz wrote: Hello, Following Petr remarks from the previous review, I modified the or

Re: [Freeipa-devel] [Patch] 0001-2 User Life Cycle: create containers and scoping DS plugins

On Thu, Aug 28, 2014 at 07:26:51PM +0200, thierry bordaz wrote: > On 08/28/2014 06:51 PM, Sumit Bose wrote: > >On Thu, Aug 14, 2014 at 07:18:40PM +0200, thierry bordaz wrote: > >>Hello, > >> > >>Following Petr remarks from the previous review, I modified the > >>original fix to move it only

Re: [Freeipa-devel] [PATCH 0061] Ensure ipaUserAuthTypeClass when needed on user creation

On Tue, 2014-08-19 at 16:46 -0400, Nathaniel McCallum wrote: > Also, remove the attempt to load the objectClasses when absent. This > never makes sense during an add operation. > > https://fedorahosted.org/freeipa/ticket/4455 I still need a review for this. We are trying to get this in 4.0.2. Na

Re: [Freeipa-devel] [Patch] 0001-2 User Life Cycle: create containers and scoping DS plugins

On 08/28/2014 06:51 PM, Sumit Bose wrote: On Thu, Aug 14, 2014 at 07:18:40PM +0200, thierry bordaz wrote: Hello, Following Petr remarks from the previous review, I modified the original fix to move it only in '.update' files. Thanks thierry From d45e78dfeb7761348c464b3bb39566

Re: [Freeipa-devel] [Patch] 0001-2 User Life Cycle: create containers and scoping DS plugins

On Thu, Aug 14, 2014 at 07:18:40PM +0200, thierry bordaz wrote: > Hello, > >Following Petr remarks from the previous review, I modified the >original fix to move it only in '.update' files. > >Thanks >thierry > > From d45e78dfeb7761348c464b3bb3956656bb115ce0 Mon Sep 17 00:00:00

Re: [Freeipa-devel] [PATCH 0116] Refactoring of service autobind

Hi, Dne 27.8.2014 v 15:22 Martin Basti napsal(a): Patch attached. 1) Please rename object_exists to entry_exists. 2) Use empty attribute list in get_entry() in object_exists/entry_exists. 3) Please update LDAPObject.get_dn_if_exists() to use object_exists/entry_exists. 4) I'm not a fa

[Freeipa-devel] [RFC] Migrating existing environments to Trust - v4

Hi, there is another update for the user views design http://www.freeipa.org/page/V4/Migrating_existing_environments_to_Trust (diff can be found at http://www.freeipa.org/index.php?title=V4%2FMigrating_existing_environments_to_Trust&diff=9641&oldid=8696 ) The main change is that the view is not a