IntenseWebs/freeipa
3
0
Fork 0
mirror of https://salsa.debian.org/freeipa-team/freeipa.git synced 2025-02-25 18:55:28 -06:00
Code Issues Packages Projects Releases Wiki Activity

do not disconnect when using existing connection to check default CA ACLs

Browse Source 
https://fedorahosted.org/freeipa/ticket/5459

Reviewed-By: Jan Cholasta <jcholast@redhat.com>
This commit is contained in:
Martin Babinsky 2015-11-24 16:40:52 +01:00 committed by Jan Cholasta
parent 341406d165
commit ed830af693
1 changed files with 3 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
ipaserver/install/cainstance.py
View File

@ -2004,7 +2004,8 @@ def _create_dogtag_profile(profile_id, profile_data):
def ensure_default_caacl(): def ensure_default_caacl():
"""Add the default CA ACL if missing.""" """Add the default CA ACL if missing."""
if not api.Backend.ldap2.isconnected(): is_already_connected = api.Backend.ldap2.isconnected()
if not is_already_connected:
try: try:
api.Backend.ldap2.connect(autobind=True) api.Backend.ldap2.connect(autobind=True)
except errors.PublicError as e: except errors.PublicError as e:
@ -2028,7 +2029,7 @@ def ensure_default_caacl():
api.Command.caacl_add_profile(u'hosts_services_caIPAserviceCert', api.Command.caacl_add_profile(u'hosts_services_caIPAserviceCert',
certprofile=(u'caIPAserviceCert',)) certprofile=(u'caIPAserviceCert',))
if api.Backend.ldap2.isconnected(): if not is_already_connected:
api.Backend.ldap2.disconnect() api.Backend.ldap2.disconnect()