Re: [Freeipa-devel] [PATCH] 0010 Add 'host' setting into default.conf configuration file
On 09/02/2014 10:18 AM, Jan Cholasta wrote: Dne 27.8.2014 v 16:49 David Kupka napsal(a): On 08/27/2014 11:22 AM, Jan Cholasta wrote: Dne 26.8.2014 v 15:55 Rob Crittenden napsal(a): David Kupka wrote: On 08/26/2014 03:08 PM, Jan Cholasta wrote: Hi, Dne 26.8.2014 v 13:01 David Kupka napsal(a): https://fedorahosted.org/freeipa/ticket/4481 Doing this will break ipa-client-automount and ipa-certupdate, because they assume that api.env.host contains the hostname of the local system (which is the default value). It looked suspiciously simple so I could expect that there is some catch. There is obviously some confusion about what the option should represent (documentation says server hostname, code does client hostname), IMO we should resolve that first. Ok, are there any suggestions? What is the desired state? AIUI the server option is deprecated because it wasn't being used, not that it needed to be replaced. I believe that in most cases the server name is pulled from the xmlrpc_uri. Yes, that's what the ticket says: https://fedorahosted.org/freeipa/ticket/3071. Ok, adding 'host' entry with local host name. host has always meant the local host name. I think the man page is wrong. +1 Fixing the line in man page. rob ACK as long as this works for Nalin. I see Nalin is OK with the patch, I am not so OK. What should we do with the server option then? It is still being referred to as Deprecated in the man page. Should we then un-deprecate it as Honza suggested down the thread? Martin ___ Freeipa-devel mailing list Freeipa-devel@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-devel
Re: [Freeipa-devel] [PATCH] 0010 Add 'host' setting into default.conf configuration file
On 09/26/2014 09:56 AM, Martin Kosek wrote: On 09/02/2014 10:18 AM, Jan Cholasta wrote: Dne 27.8.2014 v 16:49 David Kupka napsal(a): On 08/27/2014 11:22 AM, Jan Cholasta wrote: Dne 26.8.2014 v 15:55 Rob Crittenden napsal(a): David Kupka wrote: On 08/26/2014 03:08 PM, Jan Cholasta wrote: Hi, Dne 26.8.2014 v 13:01 David Kupka napsal(a): https://fedorahosted.org/freeipa/ticket/4481 Doing this will break ipa-client-automount and ipa-certupdate, because they assume that api.env.host contains the hostname of the local system (which is the default value). It looked suspiciously simple so I could expect that there is some catch. There is obviously some confusion about what the option should represent (documentation says server hostname, code does client hostname), IMO we should resolve that first. Ok, are there any suggestions? What is the desired state? AIUI the server option is deprecated because it wasn't being used, not that it needed to be replaced. I believe that in most cases the server name is pulled from the xmlrpc_uri. Yes, that's what the ticket says: https://fedorahosted.org/freeipa/ticket/3071. Ok, adding 'host' entry with local host name. host has always meant the local host name. I think the man page is wrong. +1 Fixing the line in man page. rob ACK as long as this works for Nalin. I see Nalin is OK with the patch, I am not so OK. What should we do with the server option then? It is still being referred to as Deprecated in the man page. Should we then un-deprecate it as Honza suggested down the thread? Martin Ok, changed man page. It no longer refer server as deprecated. -- David Kupka From 273d68f91dede5fccb70944b2a360865082bf276 Mon Sep 17 00:00:00 2001 From: David Kupka dku...@redhat.com Date: Wed, 27 Aug 2014 16:02:35 +0200 Subject: [PATCH] Add 'host' setting into default.conf configuration file on client. Fix description in man page. 'host' setting specifies local hostname not the hostname of IPA server. https://fedorahosted.org/freeipa/ticket/4481 --- ipa-client/ipa-install/ipa-client-install | 5 +++-- ipa-client/man/default.conf.5 | 4 ++-- 2 files changed, 5 insertions(+), 4 deletions(-) diff --git a/ipa-client/ipa-install/ipa-client-install b/ipa-client/ipa-install/ipa-client-install index b3da28df19654a2bf676fd7499057828394c9618..45e802207d06a64cc53c581445c9e897c5295c88 100755 --- a/ipa-client/ipa-install/ipa-client-install +++ b/ipa-client/ipa-install/ipa-client-install @@ -812,7 +812,7 @@ def uninstall(options, env): return rv -def configure_ipa_conf(fstore, cli_basedn, cli_realm, cli_domain, cli_server): +def configure_ipa_conf(fstore, cli_basedn, cli_realm, cli_domain, cli_server, hostname): ipaconf = ipaclient.ipachangeconf.IPAChangeConf(IPA Installer) ipaconf.setOptionAssignment( = ) ipaconf.setSectionNameDelimiters(([,])) @@ -825,6 +825,7 @@ def configure_ipa_conf(fstore, cli_basedn, cli_realm, cli_domain, cli_server): {'name':'realm', 'type':'option', 'value':cli_realm}, {'name':'domain', 'type':'option', 'value':cli_domain}, {'name':'server', 'type':'option', 'value':cli_server[0]}, + {'name':'host', 'type':'option', 'value':hostname}, {'name':'xmlrpc_uri', 'type':'option', 'value':'https://%s/ipa/xml' % ipautil.format_netloc(cli_server[0])}, {'name':'enable_ra', 'type':'option', 'value':'True'}] @@ -2473,7 +2474,7 @@ def install(options, env, fstore, statestore): # Configure ipa.conf if not options.on_master: -configure_ipa_conf(fstore, cli_basedn, cli_realm, cli_domain, cli_server) +configure_ipa_conf(fstore, cli_basedn, cli_realm, cli_domain, cli_server, hostname) root_logger.info(Created /etc/ipa/default.conf) api.bootstrap(context='cli_installer', debug=options.debug) diff --git a/ipa-client/man/default.conf.5 b/ipa-client/man/default.conf.5 index c1ccf109e874907885fc3b51b63507c2b46b64ab..dbc8a5b4647439de4de7c01152d098eb0561e236 100644 --- a/ipa-client/man/default.conf.5 +++ b/ipa-client/man/default.conf.5 @@ -96,7 +96,7 @@ Specifies whether the CA is acting as an RA agent, such as when dogtag is being Specifies whether an IPA client should attempt to fall back and try other services if the first connection fails. .TP .B host hostname -Specifies the hostname of the IPA server. This value is used to construct URL values on the client and server. +Specifies the local system hostname. .TP .B in_server boolean Specifies whether requests should be forwarded to an IPA server or handled locally. This is used internally by IPA in a similar way as context. The same IPA framework is used by the ipa command\-line tool and the server. This setting tells the framework whether it should execute the command as if on the server or forward it via XML\-RPC to a remote server. @@ -164,7 +164,7 @@ Specifies the length of time authentication credentials cached in
Re: [Freeipa-devel] [PATCH] 0010 Add 'host' setting into default.conf configuration file
On 09/26/2014 01:37 PM, David Kupka wrote: On 09/26/2014 09:56 AM, Martin Kosek wrote: On 09/02/2014 10:18 AM, Jan Cholasta wrote: Dne 27.8.2014 v 16:49 David Kupka napsal(a): On 08/27/2014 11:22 AM, Jan Cholasta wrote: Dne 26.8.2014 v 15:55 Rob Crittenden napsal(a): David Kupka wrote: On 08/26/2014 03:08 PM, Jan Cholasta wrote: Hi, Dne 26.8.2014 v 13:01 David Kupka napsal(a): https://fedorahosted.org/freeipa/ticket/4481 Doing this will break ipa-client-automount and ipa-certupdate, because they assume that api.env.host contains the hostname of the local system (which is the default value). It looked suspiciously simple so I could expect that there is some catch. There is obviously some confusion about what the option should represent (documentation says server hostname, code does client hostname), IMO we should resolve that first. Ok, are there any suggestions? What is the desired state? AIUI the server option is deprecated because it wasn't being used, not that it needed to be replaced. I believe that in most cases the server name is pulled from the xmlrpc_uri. Yes, that's what the ticket says: https://fedorahosted.org/freeipa/ticket/3071. Ok, adding 'host' entry with local host name. host has always meant the local host name. I think the man page is wrong. +1 Fixing the line in man page. rob ACK as long as this works for Nalin. I see Nalin is OK with the patch, I am not so OK. What should we do with the server option then? It is still being referred to as Deprecated in the man page. Should we then un-deprecate it as Honza suggested down the thread? Martin Ok, changed man page. It no longer refer server as deprecated. LGTM. Pushed to: master: 89c4f1242558d725a1771dce444df5737e49289e ipa-4-1: d82bc63960c22783d8fb56bcca5e21825d9a02cc Martin ___ Freeipa-devel mailing list Freeipa-devel@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-devel
Re: [Freeipa-devel] [PATCH] 0010 Add 'host' setting into default.conf configuration file
On Tue, Sep 02, 2014 at 10:18:12AM +0200, Jan Cholasta wrote: Dne 27.8.2014 v 16:49 David Kupka napsal(a): On 08/27/2014 11:22 AM, Jan Cholasta wrote: Dne 26.8.2014 v 15:55 Rob Crittenden napsal(a): David Kupka wrote: On 08/26/2014 03:08 PM, Jan Cholasta wrote: Hi, Dne 26.8.2014 v 13:01 David Kupka napsal(a): https://fedorahosted.org/freeipa/ticket/4481 Doing this will break ipa-client-automount and ipa-certupdate, because they assume that api.env.host contains the hostname of the local system (which is the default value). It looked suspiciously simple so I could expect that there is some catch. There is obviously some confusion about what the option should represent (documentation says server hostname, code does client hostname), IMO we should resolve that first. Ok, are there any suggestions? What is the desired state? AIUI the server option is deprecated because it wasn't being used, not that it needed to be replaced. I believe that in most cases the server name is pulled from the xmlrpc_uri. Yes, that's what the ticket says: https://fedorahosted.org/freeipa/ticket/3071. Ok, adding 'host' entry with local host name. host has always meant the local host name. I think the man page is wrong. +1 Fixing the line in man page. rob ACK as long as this works for Nalin. The other half of this was cases where there's no ldap_uri set. Just so there's no confusion, if ldap_uri and/or server_uri are not set, what are the recommended fallback settings that should be used for constructing them? I suspect it's server, then host, which is the reverse of the order that they're currently being consulted, but I figured I'd ask while we're all here. Thanks, Nalin ___ Freeipa-devel mailing list Freeipa-devel@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-devel
Re: [Freeipa-devel] [PATCH] 0010 Add 'host' setting into default.conf configuration file
Dne 3.9.2014 v 15:29 Nalin Dahyabhai napsal(a): On Tue, Sep 02, 2014 at 10:18:12AM +0200, Jan Cholasta wrote: Dne 27.8.2014 v 16:49 David Kupka napsal(a): On 08/27/2014 11:22 AM, Jan Cholasta wrote: Dne 26.8.2014 v 15:55 Rob Crittenden napsal(a): David Kupka wrote: On 08/26/2014 03:08 PM, Jan Cholasta wrote: Hi, Dne 26.8.2014 v 13:01 David Kupka napsal(a): https://fedorahosted.org/freeipa/ticket/4481 Doing this will break ipa-client-automount and ipa-certupdate, because they assume that api.env.host contains the hostname of the local system (which is the default value). It looked suspiciously simple so I could expect that there is some catch. There is obviously some confusion about what the option should represent (documentation says server hostname, code does client hostname), IMO we should resolve that first. Ok, are there any suggestions? What is the desired state? AIUI the server option is deprecated because it wasn't being used, not that it needed to be replaced. I believe that in most cases the server name is pulled from the xmlrpc_uri. Yes, that's what the ticket says: https://fedorahosted.org/freeipa/ticket/3071. Ok, adding 'host' entry with local host name. host has always meant the local host name. I think the man page is wrong. +1 Fixing the line in man page. rob ACK as long as this works for Nalin. The other half of this was cases where there's no ldap_uri set. Just so there's no confusion, if ldap_uri and/or server_uri are not set, what are the recommended fallback settings that should be used for constructing them? I suspect it's server, then host, which is the reverse of the order that they're currently being consulted, but I figured I'd ask while we're all here. ldap_uri is set only on servers, on clients you should use server (we should probably un-deprecate it). You could use host as a fallback, but it will only work on servers, as it points to the local host. IMO the right order is server, then ldap_uri, then maybe host. Thanks, Nalin -- Jan Cholasta ___ Freeipa-devel mailing list Freeipa-devel@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-devel
Re: [Freeipa-devel] [PATCH] 0010 Add 'host' setting into default.conf configuration file
On 09/03/2014 03:41 PM, Jan Cholasta wrote: Dne 3.9.2014 v 15:29 Nalin Dahyabhai napsal(a): On Tue, Sep 02, 2014 at 10:18:12AM +0200, Jan Cholasta wrote: Dne 27.8.2014 v 16:49 David Kupka napsal(a): On 08/27/2014 11:22 AM, Jan Cholasta wrote: Dne 26.8.2014 v 15:55 Rob Crittenden napsal(a): David Kupka wrote: On 08/26/2014 03:08 PM, Jan Cholasta wrote: Hi, Dne 26.8.2014 v 13:01 David Kupka napsal(a): https://fedorahosted.org/freeipa/ticket/4481 Doing this will break ipa-client-automount and ipa-certupdate, because they assume that api.env.host contains the hostname of the local system (which is the default value). It looked suspiciously simple so I could expect that there is some catch. There is obviously some confusion about what the option should represent (documentation says server hostname, code does client hostname), IMO we should resolve that first. Ok, are there any suggestions? What is the desired state? AIUI the server option is deprecated because it wasn't being used, not that it needed to be replaced. I believe that in most cases the server name is pulled from the xmlrpc_uri. Yes, that's what the ticket says: https://fedorahosted.org/freeipa/ticket/3071. Ok, adding 'host' entry with local host name. host has always meant the local host name. I think the man page is wrong. +1 Fixing the line in man page. rob ACK as long as this works for Nalin. The other half of this was cases where there's no ldap_uri set. Just so there's no confusion, if ldap_uri and/or server_uri are not set, what are the recommended fallback settings that should be used for constructing them? I suspect it's server, then host, which is the reverse of the order that they're currently being consulted, but I figured I'd ask while we're all here. ldap_uri is set only on servers, on clients you should use server (we should probably un-deprecate it). You could use host as a fallback, but it will only work on servers, as it points to the local host. IMO the right order is server, then ldap_uri, then maybe host. BTW what happens when original server that the client enrolled with no longer exist and was replaced by some other server with other FQDN. Will certmonger fail in this case or will it fall back and do DNS SRV record to find alternative server like ipa command does? Martin ___ Freeipa-devel mailing list Freeipa-devel@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-devel
Re: [Freeipa-devel] [PATCH] 0010 Add 'host' setting into default.conf configuration file
On Wed, Sep 03, 2014 at 04:25:00PM +0200, Martin Kosek wrote: On 09/03/2014 03:41 PM, Jan Cholasta wrote: ldap_uri is set only on servers, on clients you should use server (we should probably un-deprecate it). You could use host as a fallback, but it will only work on servers, as it points to the local host. IMO the right order is server, then ldap_uri, then maybe host. BTW what happens when original server that the client enrolled with no longer exist and was replaced by some other server with other FQDN. Will certmonger fail in this case or will it fall back and do DNS SRV record to find alternative server like ipa command does? It doesn't currently, but that certainly sounds like a reasonable thing to ask for in a trac ticket or bugzilla. Cheers, Nalin ___ Freeipa-devel mailing list Freeipa-devel@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-devel
Re: [Freeipa-devel] [PATCH] 0010 Add 'host' setting into default.conf configuration file
On 09/03/2014 04:33 PM, Nalin Dahyabhai wrote: On Wed, Sep 03, 2014 at 04:25:00PM +0200, Martin Kosek wrote: On 09/03/2014 03:41 PM, Jan Cholasta wrote: ldap_uri is set only on servers, on clients you should use server (we should probably un-deprecate it). You could use host as a fallback, but it will only work on servers, as it points to the local host. IMO the right order is server, then ldap_uri, then maybe host. BTW what happens when original server that the client enrolled with no longer exist and was replaced by some other server with other FQDN. Will certmonger fail in this case or will it fall back and do DNS SRV record to find alternative server like ipa command does? It doesn't currently, but that certainly sounds like a reasonable thing to ask for in a trac ticket or bugzilla. Cheers, Nalin Ok, bug filed: https://bugzilla.redhat.com/show_bug.cgi?id=1136900 Martin ___ Freeipa-devel mailing list Freeipa-devel@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-devel
Re: [Freeipa-devel] [PATCH] 0010 Add 'host' setting into default.conf configuration file
Dne 27.8.2014 v 16:49 David Kupka napsal(a): On 08/27/2014 11:22 AM, Jan Cholasta wrote: Dne 26.8.2014 v 15:55 Rob Crittenden napsal(a): David Kupka wrote: On 08/26/2014 03:08 PM, Jan Cholasta wrote: Hi, Dne 26.8.2014 v 13:01 David Kupka napsal(a): https://fedorahosted.org/freeipa/ticket/4481 Doing this will break ipa-client-automount and ipa-certupdate, because they assume that api.env.host contains the hostname of the local system (which is the default value). It looked suspiciously simple so I could expect that there is some catch. There is obviously some confusion about what the option should represent (documentation says server hostname, code does client hostname), IMO we should resolve that first. Ok, are there any suggestions? What is the desired state? AIUI the server option is deprecated because it wasn't being used, not that it needed to be replaced. I believe that in most cases the server name is pulled from the xmlrpc_uri. Yes, that's what the ticket says: https://fedorahosted.org/freeipa/ticket/3071. Ok, adding 'host' entry with local host name. host has always meant the local host name. I think the man page is wrong. +1 Fixing the line in man page. rob ACK as long as this works for Nalin. -- Jan Cholasta ___ Freeipa-devel mailing list Freeipa-devel@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-devel
Re: [Freeipa-devel] [PATCH] 0010 Add 'host' setting into default.conf configuration file
Dne 26.8.2014 v 15:55 Rob Crittenden napsal(a): David Kupka wrote: On 08/26/2014 03:08 PM, Jan Cholasta wrote: Hi, Dne 26.8.2014 v 13:01 David Kupka napsal(a): https://fedorahosted.org/freeipa/ticket/4481 Doing this will break ipa-client-automount and ipa-certupdate, because they assume that api.env.host contains the hostname of the local system (which is the default value). It looked suspiciously simple so I could expect that there is some catch. There is obviously some confusion about what the option should represent (documentation says server hostname, code does client hostname), IMO we should resolve that first. Ok, are there any suggestions? What is the desired state? AIUI the server option is deprecated because it wasn't being used, not that it needed to be replaced. I believe that in most cases the server name is pulled from the xmlrpc_uri. Yes, that's what the ticket says: https://fedorahosted.org/freeipa/ticket/3071. host has always meant the local host name. I think the man page is wrong. +1 rob -- Jan Cholasta ___ Freeipa-devel mailing list Freeipa-devel@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-devel
Re: [Freeipa-devel] [PATCH] 0010 Add 'host' setting into default.conf configuration file
On 08/27/2014 11:22 AM, Jan Cholasta wrote: Dne 26.8.2014 v 15:55 Rob Crittenden napsal(a): David Kupka wrote: On 08/26/2014 03:08 PM, Jan Cholasta wrote: Hi, Dne 26.8.2014 v 13:01 David Kupka napsal(a): https://fedorahosted.org/freeipa/ticket/4481 Doing this will break ipa-client-automount and ipa-certupdate, because they assume that api.env.host contains the hostname of the local system (which is the default value). It looked suspiciously simple so I could expect that there is some catch. There is obviously some confusion about what the option should represent (documentation says server hostname, code does client hostname), IMO we should resolve that first. Ok, are there any suggestions? What is the desired state? AIUI the server option is deprecated because it wasn't being used, not that it needed to be replaced. I believe that in most cases the server name is pulled from the xmlrpc_uri. Yes, that's what the ticket says: https://fedorahosted.org/freeipa/ticket/3071. Ok, adding 'host' entry with local host name. host has always meant the local host name. I think the man page is wrong. +1 Fixing the line in man page. rob -- David Kupka From 5c5dd23ad6ef32ead2505783ba8b12bd3e6b0366 Mon Sep 17 00:00:00 2001 From: David Kupka dku...@redhat.com Date: Wed, 27 Aug 2014 16:02:35 +0200 Subject: [PATCH] Add 'host' setting into default.conf configuration file on client. Fix description in man page. 'host' setting specifies local hostname not the hostname of IPA server. https://fedorahosted.org/freeipa/ticket/4481 --- ipa-client/ipa-install/ipa-client-install | 5 +++-- ipa-client/man/default.conf.5 | 2 +- 2 files changed, 4 insertions(+), 3 deletions(-) diff --git a/ipa-client/ipa-install/ipa-client-install b/ipa-client/ipa-install/ipa-client-install index 08fefc86d31392e9abf66ee4f8fff54a88179795..13afc3e8bd72b42021f40b19e2b236952d9bf382 100755 --- a/ipa-client/ipa-install/ipa-client-install +++ b/ipa-client/ipa-install/ipa-client-install @@ -805,7 +805,7 @@ def uninstall(options, env): return rv -def configure_ipa_conf(fstore, cli_basedn, cli_realm, cli_domain, cli_server): +def configure_ipa_conf(fstore, cli_basedn, cli_realm, cli_domain, cli_server, hostname): ipaconf = ipaclient.ipachangeconf.IPAChangeConf(IPA Installer) ipaconf.setOptionAssignment( = ) ipaconf.setSectionNameDelimiters(([,])) @@ -818,6 +818,7 @@ def configure_ipa_conf(fstore, cli_basedn, cli_realm, cli_domain, cli_server): {'name':'realm', 'type':'option', 'value':cli_realm}, {'name':'domain', 'type':'option', 'value':cli_domain}, {'name':'server', 'type':'option', 'value':cli_server[0]}, + {'name':'host', 'type':'option', 'value':hostname}, {'name':'xmlrpc_uri', 'type':'option', 'value':'https://%s/ipa/xml' % ipautil.format_netloc(cli_server[0])}, {'name':'enable_ra', 'type':'option', 'value':'True'}] @@ -2529,7 +2530,7 @@ def install(options, env, fstore, statestore): # Configure ipa.conf if not options.on_master: -configure_ipa_conf(fstore, cli_basedn, cli_realm, cli_domain, cli_server) +configure_ipa_conf(fstore, cli_basedn, cli_realm, cli_domain, cli_server, hostname) root_logger.info(Created /etc/ipa/default.conf) api.bootstrap(context='cli_installer', debug=options.debug) diff --git a/ipa-client/man/default.conf.5 b/ipa-client/man/default.conf.5 index c1ccf109e874907885fc3b51b63507c2b46b64ab..f3f62434f3c38384d0f93245592b4b91d4cc1815 100644 --- a/ipa-client/man/default.conf.5 +++ b/ipa-client/man/default.conf.5 @@ -96,7 +96,7 @@ Specifies whether the CA is acting as an RA agent, such as when dogtag is being Specifies whether an IPA client should attempt to fall back and try other services if the first connection fails. .TP .B host hostname -Specifies the hostname of the IPA server. This value is used to construct URL values on the client and server. +Specifies the local system hostname. .TP .B in_server boolean Specifies whether requests should be forwarded to an IPA server or handled locally. This is used internally by IPA in a similar way as context. The same IPA framework is used by the ipa command\-line tool and the server. This setting tells the framework whether it should execute the command as if on the server or forward it via XML\-RPC to a remote server. -- 1.9.3 ___ Freeipa-devel mailing list Freeipa-devel@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-devel
Re: [Freeipa-devel] [PATCH] 0010 Add 'host' setting into default.conf configuration file
Hi, Dne 26.8.2014 v 13:01 David Kupka napsal(a): https://fedorahosted.org/freeipa/ticket/4481 Doing this will break ipa-client-automount and ipa-certupdate, because they assume that api.env.host contains the hostname of the local system (which is the default value). There is obviously some confusion about what the option should represent (documentation says server hostname, code does client hostname), IMO we should resolve that first. Honza -- Jan Cholasta ___ Freeipa-devel mailing list Freeipa-devel@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-devel
Re: [Freeipa-devel] [PATCH] 0010 Add 'host' setting into default.conf configuration file
On 08/26/2014 03:08 PM, Jan Cholasta wrote: Hi, Dne 26.8.2014 v 13:01 David Kupka napsal(a): https://fedorahosted.org/freeipa/ticket/4481 Doing this will break ipa-client-automount and ipa-certupdate, because they assume that api.env.host contains the hostname of the local system (which is the default value). It looked suspiciously simple so I could expect that there is some catch. There is obviously some confusion about what the option should represent (documentation says server hostname, code does client hostname), IMO we should resolve that first. Ok, are there any suggestions? What is the desired state? Honza -- David Kupka ___ Freeipa-devel mailing list Freeipa-devel@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-devel
Re: [Freeipa-devel] [PATCH] 0010 Add 'host' setting into default.conf configuration file
David Kupka wrote: On 08/26/2014 03:08 PM, Jan Cholasta wrote: Hi, Dne 26.8.2014 v 13:01 David Kupka napsal(a): https://fedorahosted.org/freeipa/ticket/4481 Doing this will break ipa-client-automount and ipa-certupdate, because they assume that api.env.host contains the hostname of the local system (which is the default value). It looked suspiciously simple so I could expect that there is some catch. There is obviously some confusion about what the option should represent (documentation says server hostname, code does client hostname), IMO we should resolve that first. Ok, are there any suggestions? What is the desired state? AIUI the server option is deprecated because it wasn't being used, not that it needed to be replaced. I believe that in most cases the server name is pulled from the xmlrpc_uri. host has always meant the local host name. I think the man page is wrong. rob ___ Freeipa-devel mailing list Freeipa-devel@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-devel