IntenseWebs/freeipa
3
0
Fork 0
mirror of https://salsa.debian.org/freeipa-team/freeipa.git synced 2025-02-25 18:55:28 -06:00
Code Issues Packages Projects Releases Wiki Activity

install: add restart_dirsrv for directory server restarts

Browse Source 
* Create a utility function to restart a directory server and
    reconnect the api.Backend.ldap2 connection.
* Use restart_dirsrv instead of knownservices.dirsrv.restart to
    ensure api.Backend.ldap2 is reconnected.

https://fedorahosted.org/freeipa/ticket/6461

Reviewed-By: Martin Basti <mbasti@redhat.com>
Reviewed-By: Jan Cholasta <jcholast@redhat.com>
This commit is contained in:
Tomas Krizek
2016-10-26 14:17:02 +02:00
committed by Martin Basti
parent e8aa2627c7
commit e05bdeb6cf
7 changed files with 19 additions and 17 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
ipaserver/install/adtrustinstance.py
View File

@@ -721,7 +721,7 @@ class ADTRUSTInstance(service.Service):
def __restart_dirsrv(self): def __restart_dirsrv(self):
try: try:
services.knownservices.dirsrv.restart() installutils.restart_dirsrv()
except Exception: except Exception:
pass pass

9
ipaserver/install/ca.py
View File

@@ -215,14 +215,7 @@ def install_step_1(standalone, replica_config, options):
cert, nickname, trust_flags[nickname], cert, nickname, trust_flags[nickname],
config_ipa=True, config_compat=True) config_ipa=True, config_compat=True)
installutils.restart_dirsrv()
api.Backend.ldap2.disconnect()
# Restart DS
services.knownservices.dirsrv.restart(serverid)
api.Backend.ldap2.connect(bind_dn=DN(('cn', 'Directory Manager')),
bind_pw=dm_password)
# Store DS CA cert in Dogtag NSS database # Store DS CA cert in Dogtag NSS database
dogtagdb = certs.CertDB(realm_name, nssdir=paths.PKI_TOMCAT_ALIAS_DIR) dogtagdb = certs.CertDB(realm_name, nssdir=paths.PKI_TOMCAT_ALIAS_DIR)

2
ipaserver/install/cainstance.py
View File

@@ -1583,7 +1583,7 @@ def install_replica_ca(config, postinstall=False, ra_p12=None):
service.print_msg("Restarting the directory and certificate servers") service.print_msg("Restarting the directory and certificate servers")
ca.stop('pki-tomcat') ca.stop('pki-tomcat')
services.knownservices.dirsrv.restart() installutils.restart_dirsrv()
ca.start('pki-tomcat') ca.start('pki-tomcat')

13
ipaserver/install/installutils.py
View File

@@ -51,7 +51,7 @@ from ipapython.admintool import ScriptError
from ipapython.ipa_log_manager import root_logger from ipapython.ipa_log_manager import root_logger
from ipalib.util import validate_hostname from ipalib.util import validate_hostname
from ipapython import config from ipapython import config
from ipalib import errors, x509 from ipalib import api, errors, x509
from ipapython.dn import DN from ipapython.dn import DN
from ipaserver.install import certs, service, sysupgrade from ipaserver.install import certs, service, sysupgrade
from ipaplatform import services from ipaplatform import services
@@ -1399,3 +1399,14 @@ def remove_ccache(ccache_path=None, run_as=None):
except ipautil.CalledProcessError as e: except ipautil.CalledProcessError as e:
root_logger.warning( root_logger.warning(
"Failed to clear Kerberos credentials cache: {}".format(e)) "Failed to clear Kerberos credentials cache: {}".format(e))
def restart_dirsrv(instance_name="", capture_output=True):
"""
Restart Directory server and perform ldap reconnect.
"""
api.Backend.ldap2.disconnect()
services.knownservices.dirsrv.restart(instance_name=instance_name,
capture_output=capture_output,
wait=True, ldapi=True)
api.Backend.ldap2.connect()

2
ipaserver/install/krainstance.py
View File

@@ -445,7 +445,7 @@ def install_replica_kra(config, postinstall=False):
service.print_msg("Restarting the directory and KRA servers") service.print_msg("Restarting the directory and KRA servers")
_kra.stop('pki-tomcat') _kra.stop('pki-tomcat')
services.knownservices.dirsrv.restart() installutils.restart_dirsrv()
_kra.start('pki-tomcat') _kra.start('pki-tomcat')
return _kra return _kra

4
ipaserver/install/ldapupdate.py
View File

@@ -40,7 +40,6 @@ from ipalib import errors
from ipalib import api, create_api from ipalib import api, create_api
from ipalib import constants from ipalib import constants
from ipaplatform.paths import paths from ipaplatform.paths import paths
from ipaplatform import services
from ipapython.dn import DN from ipapython.dn import DN
from ipapython.ipa_log_manager import log_mgr from ipapython.ipa_log_manager import log_mgr
@@ -926,6 +925,5 @@ class LDAPUpdate(object):
self.conn = None self.conn = None
def restart_ds(self): def restart_ds(self):
dirsrv = services.knownservices.dirsrv
self.log.debug('Restarting directory server to apply updates') self.log.debug('Restarting directory server to apply updates')
dirsrv.restart(ldapi=self.ldapi) installutils.restart_dirsrv()

4
ipaserver/install/replication.py
View File

@@ -35,8 +35,8 @@ from ipapython.ipa_log_manager import root_logger
from ipapython import ipautil, ipaldap from ipapython import ipautil, ipaldap
from ipapython.admintool import ScriptError from ipapython.admintool import ScriptError
from ipapython.dn import DN from ipapython.dn import DN
from ipaplatform import services
from ipaplatform.paths import paths from ipaplatform.paths import paths
from ipaserver.install import installutils
if six.PY3: if six.PY3:
unicode = str unicode = str
@@ -130,7 +130,7 @@ def enable_replication_version_checking(realm, dirman_passwd):
conn.modify_s(entry.dn, [(ldap.MOD_REPLACE, 'nsslapd-pluginenabled', 'on')]) conn.modify_s(entry.dn, [(ldap.MOD_REPLACE, 'nsslapd-pluginenabled', 'on')])
conn.unbind() conn.unbind()
serverid = "-".join(realm.split(".")) serverid = "-".join(realm.split("."))
services.knownservices.dirsrv.restart(instance_name=serverid) installutils.restart_dirsrv(serverid)
else: else:
conn.unbind() conn.unbind()