IntenseWebs/freeipa
3
0
Fork 0
mirror of https://salsa.debian.org/freeipa-team/freeipa.git synced 2025-02-25 18:55:28 -06:00
Code Issues Packages Projects Releases Wiki Activity

Ticket Expiration

Browse Source 
THis patch handles Kerberos ticket expiration in the UI.  Additionally it removes the mod_atuh_kerb authorization for elements in the static directory, cutting down on the number of round trips required for initializing the web app

Conflicts:

	install/static/ipa.js
This commit is contained in:
Adam Young
2010-11-05 19:48:42 -04:00
parent 29c9c70d46
commit 90baf597dd
3 changed files with 29 additions and 13 deletions
Download Patch File Download Diff File Expand all files Collapse all files

11
install/conf/ipa.conf
View File

@@ -89,20 +89,11 @@ Alias /ipa/ui "/usr/share/ipa/static"
<Directory "/usr/share/ipa/static"> <Directory "/usr/share/ipa/static">
SetHandler None SetHandler None
AllowOverride None AllowOverride None
Satisfy Any
Allow from all Allow from all
</Directory> </Directory>
# WebUI assets
Alias /ipa-assets/ "/var/cache/ipa/assets/"
<Directory "/var/cache/ipa/assets">
Allow from all
AllowOverride None
Options FollowSymLinks
ExpiresActive On
ExpiresDefault A31536000
</Directory>
# Protect our CGIs # Protect our CGIs
<Directory /var/www/cgi-bin> <Directory /var/www/cgi-bin>

22
install/static/ipa.js
View File

@@ -23,7 +23,6 @@
/*Forward defined due to circular dependency with IPA.*/ /*Forward defined due to circular dependency with IPA.*/
var ipa_cmd; var ipa_cmd;
var IPA_DEFAULT_JSON_URL = '/ipa/json';
var IPA = ( function () { var IPA = ( function () {
var that = { var that = {
@@ -119,6 +118,7 @@ var IPA = ( function () {
* objname - name of an IPA object (optional) */ * objname - name of an IPA object (optional) */
function ipa_cmd(name, args, options, win_callback, fail_callback, objname) function ipa_cmd(name, args, options, win_callback, fail_callback, objname)
{ {
var default_json_url = '/ipa/json';
function dialog_open(xhr, text_status, error_thrown) { function dialog_open(xhr, text_status, error_thrown) {
var that = this; var that = this;
@@ -150,6 +150,24 @@ function ipa_cmd(name, args, options, win_callback, fail_callback, objname)
} }
function error_handler(xhr, text_status, error_thrown) { function error_handler(xhr, text_status, error_thrown) {
if (!error_thrown){
error_thrown = {name:'unknown'}
}
if (xhr.status === 401){
error_thrown.name = 'Kerberos ticket no longer valid.';
if (IPA.messages && IPA.messages.ajax){
error_thrown.message = IPA.messages.ajax["401"];
}else{
error_thrown.message =
"Your kerberos ticket no longer valid."+
"Please run KInit and then click 'retry'"+
"If this is your first time running the IPA Web UI"+
"<a href='/ipa/errors/ssbrowser.html'> "+
"Follow these directions</a> to configure your browser."
}
}
error_thrown.title = 'AJAX Error: '+error_thrown.name; error_thrown.title = 'AJAX Error: '+error_thrown.name;
ajax_error_handler.call(this, xhr, text_status, error_thrown); ajax_error_handler.call(this, xhr, text_status, error_thrown);
} }
@@ -206,7 +224,7 @@ function ipa_cmd(name, args, options, win_callback, fail_callback, objname)
var url = IPA.json_url; var url = IPA.json_url;
if (!url){ if (!url){
url = IPA_DEFAULT_JSON_URL; url = default_json_url;
} }
if (IPA.use_static_files){ if (IPA.use_static_files){

9
ipalib/plugins/internal.py
View File

@@ -58,7 +58,14 @@ class json_metadata(Command):
"mailing":_("Mailing Address"), "mailing":_("Mailing Address"),
"employee":_(" Employee Information"), "employee":_(" Employee Information"),
"misc":_("Misc. Information"), "misc":_("Misc. Information"),
"to_top":_("Back to Top")} "to_top":_("Back to Top")},
"ajax":{
"401":_("Your kerberos ticket no longer valid."+
"Please run KInit and then click 'retry'"+
"If this is your first time running the IPA Web UI"+
"<a href='/ipa/errors/ssbrowser.html'> "+
"Follow these directions</a> to configure your browser.")
}
} }
takes_args = ( takes_args = (