Re: [Freeipa-devel] Locations design v2: LDAP schema & user interface

On 6.4.2016 10:57, Petr Spacek wrote: On 6.4.2016 10:50, Jan Cholasta wrote: On 4.4.2016 13:51, Petr Spacek wrote: On 4.4.2016 13:39, Martin Basti wrote: On 31.03.2016 09:58, Petr Spacek wrote: On 26.2.2016 15:37, Petr Spacek wrote: On 25.2.2016 16:46, Simo Sorce wrote: On Thu,

Re: [Freeipa-devel] [WIP PATCH] server-del: perform full master removal in managed topology

On 13.4.2016 17:10, Rob Crittenden wrote: Martin Babinsky wrote: This is a WIP patch which moves the `ipa-replica-manage del` subcommand to the 'server-del' API method and exposes it as CLI command[1]. A CI test suite is also included. There are some issues with the patch I would like to

Re: [Freeipa-devel] [PATCH] 0051 Allow CustodiaClient to be used by arbitrary principals

On Wed, Apr 13, 2016 at 11:15:50AM +1000, Fraser Tweedale wrote: > On Tue, Apr 12, 2016 at 09:31:30AM -0400, Simo Sorce wrote: > > On Sat, 2016-04-09 at 10:11 +1000, Fraser Tweedale wrote: > > > On Fri, Apr 08, 2016 at 10:47:19AM -0400, Simo Sorce wrote: > > > > On Sat, 2016-04-09 at 00:23 +1000,

[Freeipa-devel] [PATCH] 0053..0054 Configure lightweight CA key replication

Hi all, The attached patches configure lightweight CA key replication on IPA CAs, on upgrade and installation. Patches 0051..0052 from my other mail are also needed for the system to work, but this patchset does not depend on them and can be reviewed independently. There is also no hard

[Freeipa-devel] [PATCH] 0015, 16 webui: Add 'Skip overlap check' checkbox to the dns adder dialogs

Hello, The first patch (0015) adds the checkbox to the dns zone adder dialog. The second patch (0016) adds the 'skip overlap check' checkbox to the dns forward zone adder dialog. This patch requires the previous one. The patch 0016 might not be used in case that the dns forward zone dialog

Re: [Freeipa-devel] [TEST][patch-0035] Test replica installed under domain level 0 is functional after domain upgrade

The new version disables a falsely failing pylint check for ldap_connect method in a master host instance. On 04/13/2016 10:30 AM, Oleg Fayans wrote: > Hi Martin, > > I've updated the patch with regard to your review. Thank you! > > On 04/12/2016 03:35 PM, Martin Babinsky wrote: >> On

Re: [Freeipa-devel] [TEST][patch-0035] Test replica installed under domain level 0 is functional after domain upgrade

On 14.04.2016 14:04, Oleg Fayans wrote: The new version disables a falsely failing pylint check for ldap_connect method in a master host instance. On 04/13/2016 10:30 AM, Oleg Fayans wrote: Hi Martin, I've updated the patch with regard to your review. Thank you! On 04/12/2016 03:35 PM,

Re: [Freeipa-devel] Check if server is fully installed and ready

On Thu, Apr 14, 2016 at 11:16:01AM +0200, Christian Heimes wrote: > > Two days ago on IRC Jan came up with the same problem with containers. > He ran into a problem related to containers and DNS updates. Since I'm My issue was mostly PEBKAC. In container environments that I use, the IP address

Re: [Freeipa-devel] Check if server is fully installed and ready

On 04/14/2016 11:16 AM, Christian Heimes wrote: Hi, while I was working on my Ansible playbook I ran into an issue. It is hard to detect if a FreeIPA server instance is fully installed and all its services are ready to handle requests. It's even harder to check it remotely. I have figured out

Re: [Freeipa-devel] [PATCH] 0015, 16 webui: Add 'Skip overlap check' checkbox to the dns adder dialogs

On 14.04.2016 13:03, Pavel Vomacka wrote: Hello, The first patch (0015) adds the checkbox to the dns zone adder dialog. The second patch (0016) adds the 'skip overlap check' checkbox to the dns forward zone adder dialog. This patch requires the previous one. The patch 0016 might not be

Re: [Freeipa-devel] [TESTS][PATCH 0011] WebUI: Creating user without private group

On 04/04/2016 06:54 PM, Martin Basti wrote: On 01.04.2016 14:34, Pavel Vomacka wrote: On 03/31/2016 04:16 PM, Lenka Doudova wrote: On 03/31/2016 12:42 PM, Pavel Vomacka wrote: On 03/18/2016 11:24 AM, Lenka Doudova wrote: On 03/10/2016 06:58 PM, Petr Vobornik wrote: On 03/08/2016

Re: [Freeipa-devel] [PATCH 0459] use python-netifaces for detection of the local ip addresses

On 13/04/16 17:43, Martin Basti wrote: https://fedorahosted.org/freeipa/ticket/5591 Patch attached. Hi, two nitpicks: 1) python-netifaces is missing in BuildRequires. 2) iproute package is no longer needed in Requires. Otherwise it works, ACK when freeipa.spec.in is fixed. -- David Kupka

Re: [Freeipa-devel] [WIP PATCH] server-del: perform full master removal in managed topology

On 04/14/2016 08:42 AM, Jan Cholasta wrote: Hi, On 13.4.2016 16:49, Martin Babinsky wrote: This is a WIP patch which moves the `ipa-replica-manage del` subcommand to the 'server-del' API method and exposes it as CLI command[1]. A CI test suite is also included. `server-del` now accepts the

Re: [Freeipa-devel] [WIP PATCH] server-del: perform full master removal in managed topology

On 04/14/2016 08:24 AM, Jan Cholasta wrote: On 13.4.2016 17:10, Rob Crittenden wrote: Martin Babinsky wrote: This is a WIP patch which moves the `ipa-replica-manage del` subcommand to the 'server-del' API method and exposes it as CLI command[1]. A CI test suite is also included. There are

[Freeipa-devel] [PATCH] 0014 webui: Update delete dialog on active user details page

Hi, The attached patch fixes this ticket: https://fedorahosted.org/freeipa/ticket/5370 . It adds radio button to choose whether you want to preserve or delete user when performing delete action from details page. -- Pavel^3 Vomacka >From 28af68dca2da24edd34361af07cd731d70b2ada9 Mon Sep 17

[Freeipa-devel] Check if server is fully installed and ready

Hi, while I was working on my Ansible playbook I ran into an issue. It is hard to detect if a FreeIPA server instance is fully installed and all its services are ready to handle requests. It's even harder to check it remotely. I have figured out some heuristics to detect that a sever is *not*

Re: [Freeipa-devel] [WIP PATCH] server-del: perform full master removal in managed topology

On 04/14/2016 10:59 AM, Martin Babinsky wrote: On 04/14/2016 08:24 AM, Jan Cholasta wrote: On 13.4.2016 17:10, Rob Crittenden wrote: Martin Babinsky wrote: This is a WIP patch which moves the `ipa-replica-manage del` subcommand to the 'server-del' API method and exposes it as CLI

Re: [Freeipa-devel] [WIP PATCH] server-del: perform full master removal in managed topology

On 04/13/2016 05:10 PM, Rob Crittenden wrote: Martin Babinsky wrote: This is a WIP patch which moves the `ipa-replica-manage del` subcommand to the 'server-del' API method and exposes it as CLI command[1]. A CI test suite is also included. There are some issues with the patch I would like to

[Freeipa-devel] [PATCH 0461] Limit max username lenght to 255 in config-mod

https://fedorahosted.org/freeipa/ticket/5774 Patch attached. From c032c8e581a26a4d36b40cf2b60756c3394d2024 Mon Sep 17 00:00:00 2001 From: Martin Basti Date: Thu, 14 Apr 2016 17:03:51 +0200 Subject: [PATCH] Limit max username length to 255 in config-mod This value is same as

Re: [Freeipa-devel] [PATCH] 0001 ipa_kdb add krbPrincipalAuthInd handling

- Original Message - > From: "Nathaniel McCallum" > To: "Matt Rogers" , freeipa-devel@redhat.com > Sent: Thursday, April 14, 2016 10:32:15 AM > Subject: Re: [Freeipa-devel] [PATCH] 0001 ipa_kdb add krbPrincipalAuthInd > handling > > On Mon,

Re: [Freeipa-devel] [PATCH 0439] Do not do extra search for ipasshpubkey

On 21.03.2016 07:48, Jan Cholasta wrote: On 18.3.2016 13:24, Martin Babinsky wrote: On 03/15/2016 01:48 PM, Martin Basti wrote: https://fedorahosted.org/freeipa/ticket/3376 Patch attached. ACK but fix the 'behavioar' typo in the commit message before pushing. 1) You are breaking the

Re: [Freeipa-devel] [PATCH] 0001 ipa_kdb add krbPrincipalAuthInd handling

On Mon, 2016-04-11 at 10:41 -0400, Matt Rogers wrote: > Hi, > > The attached patch is a part of the authentication indicator > enhancements, > adding indicator value storage and retrieval for the KDB driver. > > https://fedorahosted.org/freeipa/ticket/5782 Can you add some whitespace in

Re: [Freeipa-devel] [PATCH] 0001 ipa_kdb add krbPrincipalAuthInd handling

On Mon, 2016-04-11 at 10:41 -0400, Matt Rogers wrote: > Hi, > > The attached patch is a part of the authentication indicator > enhancements, > adding indicator value storage and retrieval for the KDB driver. > > https://fedorahosted.org/freeipa/ticket/5782 This patch is part of the