Dne 13.10.2011 05:54, Rob Crittenden napsal(a):
The has_upg() check was created during a transition period for 389-ds.
It is no longer needed and is actually breaking things. The location of
UPG template moved so it thinks the feature is not available. This is
making the primary user's group ipau
On Wed, 2011-10-12 at 23:54 -0400, Rob Crittenden wrote:
> The has_upg() check was created during a transition period for 389-ds.
> It is no longer needed and is actually breaking things. The location of
> UPG template moved so it thinks the feature is not available. This is
> making the primary
Also fixes a few issues in the unit tests. All of them now run successfully.
https://fedorahosted.org/freeipa/ticket/1959
Honza
--
Jan Cholasta
>From 00b9d0c2ecf1246a4021112e8b2451c3bd1ce595 Mon Sep 17 00:00:00 2001
From: Jan Cholasta
Date: Thu, 13 Oct 2011 04:47:43 -0400
Subject: [PATCH] Fix
On Wed, 2011-10-12 at 23:38 -0400, Rob Crittenden wrote:
> Martin Kosek wrote:
> > This patch depends on my patch 140 (attached just to be sure).
> >
> > Do I understand it correctly that new proposed bind-dyndb-ldap option
> > ldap_hostname won't be needed?
> >
> > Martin
>
> I think it would be
On Thu, 13 Oct 2011, Martin Kosek wrote:
> > 1. If an installation error occurs after the hostname has been changed
> > it isn't reverted and the uninstaller needs to be run. This should
> > rollback like the client.
>
> I think this is quite different. Client runs a whole uninstall()
> procedur
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi,
I'm having some difficulty initiating an XML-RPC from an external
python client with freeipa.
What is the correct way to interact with the XML-RPC from python,
especially in an application that is outside of the freeipa codebase?
Should I be incl
On Wed, 12 Oct 2011, Rob Crittenden wrote:
> Well, in the "generate new file" option I think the output is a bit
> misleading.
>
> +print "New SSSD config will be generated. The old one is
> backed up and can be restored during uninstall"
>
> There could have been no existing sssd.conf, r
Let netaddr.IPAddress() use inet_pton() rather than inet_aton() for
IP address parsing. We will use the same function in IPv4/IPv6
conversions + be stricter and don't allow IP addresses such as
'1.1.1' at the same time.
https://fedorahosted.org/freeipa/ticket/1965
>From d780725fe480a2ad00abb5d0a2
On Thu, 13 Oct 2011, Martin Kosek wrote:
> Let netaddr.IPAddress() use inet_pton() rather than inet_aton() for
> IP address parsing. We will use the same function in IPv4/IPv6
> conversions + be stricter and don't allow IP addresses such as
> '1.1.1' at the same time.
>
> https://fedorahosted.org/
On Thu, 2011-10-13 at 15:48 +0300, Alexander Bokovoy wrote:
> On Thu, 13 Oct 2011, Martin Kosek wrote:
> > Let netaddr.IPAddress() use inet_pton() rather than inet_aton() for
> > IP address parsing. We will use the same function in IPv4/IPv6
> > conversions + be stricter and don't allow IP addresse
Martin Kosek wrote:
On Wed, 2011-10-12 at 23:54 -0400, Rob Crittenden wrote:
The has_upg() check was created during a transition period for 389-ds.
It is no longer needed and is actually breaking things. The location of
UPG template moved so it thinks the feature is not available. This is
making
Jan Cholasta wrote:
Also fixes a few issues in the unit tests. All of them now run
successfully.
https://fedorahosted.org/freeipa/ticket/1959
Honza
I think it would be better to use:
object.__setattr__(self, 'ca_host', self._select_ca())
This will cache the value of a known CA host.
rob
_
On Thu, 2011-10-13 at 11:01 -0400, Rob Crittenden wrote:
> Martin Kosek wrote:
> > On Wed, 2011-10-12 at 23:54 -0400, Rob Crittenden wrote:
> >> The has_upg() check was created during a transition period for 389-ds.
> >> It is no longer needed and is actually breaking things. The location of
> >> U
Each IPA user will have the ability to request a cryptographic
certificate. The primary usage for user certificates is for
authentication in cases where Kerberos is not an option: Across
firewalls and cases where cross domain trust has not been established.
There are a range of options for im
Martin Kosek wrote:
On Thu, 2011-10-13 at 11:01 -0400, Rob Crittenden wrote:
Martin Kosek wrote:
On Wed, 2011-10-12 at 23:54 -0400, Rob Crittenden wrote:
The has_upg() check was created during a transition period for 389-ds.
It is no longer needed and is actually breaking things. The location
Alexander Bokovoy wrote:
On Wed, 12 Oct 2011, Rob Crittenden wrote:
Well, in the "generate new file" option I think the output is a bit
misleading.
+print "New SSSD config will be generated. The old one is
backed up and can be restored during uninstall"
There could have been no existin
From 73af7db2fafb33dcdf0ad22b6837e961dc92271f Mon Sep 17 00:00:00 2001
From: Adam Young
Date: Thu, 13 Oct 2011 14:48:55 -0400
Subject: [PATCH] rolegroup to role
Fixes the webui for the case wherea user is not admin but has a roile. In thatcase, the UI should show the full administrative tabset
Rob Crittenden wrote:
Martin Kosek wrote:
On Thu, 2011-10-13 at 11:01 -0400, Rob Crittenden wrote:
Martin Kosek wrote:
On Wed, 2011-10-12 at 23:54 -0400, Rob Crittenden wrote:
The has_upg() check was created during a transition period for 389-ds.
It is no longer needed and is actually breakin
On Thu, 2011-10-13 at 15:09 -0400, Rob Crittenden wrote:
> Rob Crittenden wrote:
> > Martin Kosek wrote:
> >> On Thu, 2011-10-13 at 11:01 -0400, Rob Crittenden wrote:
> >>> Martin Kosek wrote:
> On Wed, 2011-10-12 at 23:54 -0400, Rob Crittenden wrote:
> > The has_upg() check was created du
Martin Kosek wrote:
On Thu, 2011-10-13 at 15:09 -0400, Rob Crittenden wrote:
Rob Crittenden wrote:
Martin Kosek wrote:
On Thu, 2011-10-13 at 11:01 -0400, Rob Crittenden wrote:
Martin Kosek wrote:
On Wed, 2011-10-12 at 23:54 -0400, Rob Crittenden wrote:
The has_upg() check was created during
On Thu, 2011-10-13 at 15:28 -0400, Rob Crittenden wrote:
> Martin Kosek wrote:
> > On Thu, 2011-10-13 at 15:09 -0400, Rob Crittenden wrote:
> >> Rob Crittenden wrote:
> >>> Martin Kosek wrote:
> On Thu, 2011-10-13 at 11:01 -0400, Rob Crittenden wrote:
> > Martin Kosek wrote:
> >> On We
Ack, pushed to master and ipa-2-1
I modified the changelog a little bit before pushing.
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel
In backup_and_replace_hostname() the value of hostname wasn't being
saved if it wasn't in /etc/sysconfig/network. This should save it in
every case.
rob
>From f1aae37ab5d7c6558ba16c2ed5832cda91072edd Mon Sep 17 00:00:00 2001
From: Rob Crittenden
Date: Thu, 13 Oct 2011 17:58:27 -0400
Subject: [
On Thu, 13 Oct 2011, Rob Crittenden wrote:
> In backup_and_replace_hostname() the value of hostname wasn't being
> saved if it wasn't in /etc/sysconfig/network. This should save it in
> every case.
ACK
(yes, I need to go to bed)
--
/ Alexander Bokovoy
_
Alexander Bokovoy wrote:
On Thu, 13 Oct 2011, Martin Kosek wrote:
1. If an installation error occurs after the hostname has been changed
it isn't reverted and the uninstaller needs to be run. This should
rollback like the client.
I think this is quite different. Client runs a whole uninstall()
Alexander Bokovoy wrote:
On Thu, 13 Oct 2011, Rob Crittenden wrote:
In backup_and_replace_hostname() the value of hostname wasn't being
saved if it wasn't in /etc/sysconfig/network. This should save it in
every case.
ACK
(yes, I need to go to bed)
Why bother, it's almost time to get up, right
Added more detailed information on creating a winsync replica to the
ipa-replica-manage man page.
rob
>From a2f469f2d8f7b4f6f48de20dcd4839f45ab6356c Mon Sep 17 00:00:00 2001
From: Rob Crittenden
Date: Thu, 13 Oct 2011 18:34:23 -0400
Subject: [PATCH] Add explicit instructions to ipa-replica-mana
On Thu, 13 Oct 2011, Rob Crittenden wrote:
> Added more detailed information on creating a winsync replica to the
> ipa-replica-manage man page.
> +Creating a Windows AD Synchronization agreement is similar to creating an
> IPA replication agreement, there are just a couple of extra steps:
> +.TP
Alexander Bokovoy wrote:
On Thu, 13 Oct 2011, Rob Crittenden wrote:
Added more detailed information on creating a winsync replica to the
ipa-replica-manage man page.
+Creating a Windows AD Synchronization agreement is similar to creating an IPA
replication agreement, there are just a couple
On Fri, 14 Oct 2011, Rob Crittenden wrote:
> Alexander Bokovoy wrote:
> >On Thu, 13 Oct 2011, Rob Crittenden wrote:
> >>Added more detailed information on creating a winsync replica to the
> >>ipa-replica-manage man page.
> >
> >>+Creating a Windows AD Synchronization agreement is similar to creati
30 matches
Mail list logo