IntenseWebs/freeipa
3
0
Fork 0
mirror of https://salsa.debian.org/freeipa-team/freeipa.git synced 2025-02-25 18:55:28 -06:00
Code Issues Packages Projects Releases Wiki Activity

Changing how commands handles error when it can't connect to IPA server

Browse Source 
Creating a method to check if ipa client is configured. Also,
changing scripts to use it instead of duplicating the check.

https://pagure.io/freeipa/issue/6261

Reviewed-By: Florence Blanc-Renaud <frenaud@redhat.com>
This commit is contained in:
Felipe Volpone 2017-08-04 18:25:12 -03:00 committed by Tomas Krizek
parent a3c99367bf
commit cac3475a04
No known key found for this signature in database
GPG Key ID: 22A2A94B5E49415A
4 changed files with 31 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
client/ipa-client-automount
View File

@ -46,6 +46,7 @@ from ipaclient.install import ipachangeconf, ipadiscovery
from ipalib import api, errors from ipalib import api, errors
from ipalib.install import sysrestore from ipalib.install import sysrestore
from ipalib.install.kinit import kinit_keytab from ipalib.install.kinit import kinit_keytab
from ipalib.util import check_client_configuration
from ipapython import ipautil from ipapython import ipautil
from ipapython.ipa_log_manager import standard_logging_setup from ipapython.ipa_log_manager import standard_logging_setup
from ipapython.dn import DN from ipapython.dn import DN
@ -53,6 +54,8 @@ from ipaplatform.constants import constants
from ipaplatform.tasks import tasks from ipaplatform.tasks import tasks
from ipaplatform import services from ipaplatform import services
from ipaplatform.paths import paths from ipaplatform.paths import paths
from ipapython.admintool import ScriptError
logger = logging.getLogger(os.path.basename(__file__)) logger = logging.getLogger(os.path.basename(__file__))
@ -376,11 +379,13 @@ def configure_nfs(fstore, statestore):
rpcgssd.service_name, str(e)) rpcgssd.service_name, str(e))
def main(): def main():
try:
check_client_configuration()
except ScriptError as e:
sys.exit(e)
fstore = sysrestore.FileStore(paths.IPA_CLIENT_SYSRESTORE) fstore = sysrestore.FileStore(paths.IPA_CLIENT_SYSRESTORE)
statestore = sysrestore.StateFile(paths.IPA_CLIENT_SYSRESTORE) statestore = sysrestore.StateFile(paths.IPA_CLIENT_SYSRESTORE)
if not fstore.has_files() and not os.path.exists(paths.IPA_DEFAULT_CONF):
sys.exit('IPA client is not configured on this system.\n')
options, _args = parse_options() options, _args = parse_options()

7
ipaclient/install/ipa_certupdate.py
View File

@ -34,6 +34,7 @@ from ipaplatform.paths import paths
from ipaplatform.tasks import tasks from ipaplatform.tasks import tasks
from ipalib import api, errors, x509 from ipalib import api, errors, x509
from ipalib.constants import IPA_CA_NICKNAME, RENEWAL_CA_NAME from ipalib.constants import IPA_CA_NICKNAME, RENEWAL_CA_NAME
from ipalib.util import check_client_configuration
logger = logging.getLogger(__name__) logger = logging.getLogger(__name__)
@ -50,11 +51,7 @@ class CertUpdate(admintool.AdminTool):
super(CertUpdate, self).validate_options(needs_root=True) super(CertUpdate, self).validate_options(needs_root=True)
def run(self): def run(self):
fstore = sysrestore.FileStore(paths.IPA_CLIENT_SYSRESTORE) check_client_configuration()
if (not fstore.has_files() and
not os.path.exists(paths.IPA_DEFAULT_CONF)):
raise admintool.ScriptError(
"IPA client is not configured on this system.")
api.bootstrap(context='cli_installer', confdir=paths.ETC_IPA) api.bootstrap(context='cli_installer', confdir=paths.ETC_IPA)
api.finalize() api.finalize()

8
ipalib/cli.py
View File

@ -55,7 +55,9 @@ from ipalib.constants import CLI_TAB, LDAP_GENERALIZED_TIME_FORMAT
from ipalib.parameters import File, Str, Enum, Any, Flag from ipalib.parameters import File, Str, Enum, Any, Flag
from ipalib.text import _ from ipalib.text import _
from ipalib import api # pylint: disable=unused-import from ipalib import api # pylint: disable=unused-import
from ipalib.util import check_client_configuration
from ipapython.dnsutil import DNSName from ipapython.dnsutil import DNSName
from ipapython.admintool import ScriptError
import datetime import datetime
@ -1346,6 +1348,12 @@ def run(api):
error = None error = None
try: try:
(_options, argv) = api.bootstrap_with_global_options(context='cli') (_options, argv) = api.bootstrap_with_global_options(context='cli')
try:
check_client_configuration()
except ScriptError as e:
sys.exit(e)
for klass in cli_plugins: for klass in cli_plugins:
api.add_plugin(klass) api.add_plugin(klass)
api.finalize() api.finalize()

14
ipalib/util.py
View File

@ -55,10 +55,15 @@ from ipalib.constants import (
TLS_VERSIONS, TLS_VERSION_MINIMAL, TLS_HIGH_CIPHERS TLS_VERSIONS, TLS_VERSION_MINIMAL, TLS_HIGH_CIPHERS
) )
from ipalib.text import _ from ipalib.text import _
# pylint: disable=ipa-forbidden-import
from ipalib.install import sysrestore
from ipaplatform.paths import paths
# pylint: enable=ipa-forbidden-import
from ipapython.ssh import SSHPublicKey from ipapython.ssh import SSHPublicKey
from ipapython.dn import DN, RDN from ipapython.dn import DN, RDN
from ipapython.dnsutil import DNSName from ipapython.dnsutil import DNSName
from ipapython.dnsutil import resolve_ip_addresses from ipapython.dnsutil import resolve_ip_addresses
from ipapython.admintool import ScriptError
if six.PY3: if six.PY3:
unicode = str unicode = str
@ -1069,6 +1074,15 @@ def ensure_krbcanonicalname_set(ldap, entry_attrs):
entry_attrs.update(old_entry) entry_attrs.update(old_entry)
def check_client_configuration():
"""
Check if IPA client is configured on the system.
"""
fstore = sysrestore.FileStore(paths.IPA_CLIENT_SYSRESTORE)
if not fstore.has_files() and not os.path.exists(paths.IPA_DEFAULT_CONF):
raise ScriptError('IPA client is not configured on this system')
def check_principal_realm_in_trust_namespace(api_instance, *keys): def check_principal_realm_in_trust_namespace(api_instance, *keys):
""" """
Check that principal name's suffix does not overlap with UPNs and realm Check that principal name's suffix does not overlap with UPNs and realm