IntenseWebs/freeipa
3
0
Fork 0
mirror of https://salsa.debian.org/freeipa-team/freeipa.git synced 2025-02-25 18:55:28 -06:00
Code Issues Packages Projects Releases Wiki Activity

Run the LDAP updater at the end of the installation process.

Browse Source 
Running at the end ensures that /etc/ipa/ipa.conf is created and generally
makes it more likely to succeed.

Added a new argument to ipa-server-installl, -y <password_file>, so we
don't have to pass it on the command-line.
This commit is contained in:
Rob Crittenden 2008-09-15 18:15:12 -04:00
parent aa8c4a53bf
commit f736253b93
4 changed files with 36 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
ipa-server/ipa-install/ipa-server-install
View File

@ -540,6 +540,11 @@ def main():
else: else:
bind.create_sample_bind_zone() bind.create_sample_bind_zone()
# Apply any LDAP updates. Needs to be done after the configuration file
# is created
service.print_msg("Applying LDAP updates")
ds.apply_updates()
# Restart ds and krb after configurations have been changed # Restart ds and krb after configurations have been changed
service.print_msg("restarting the directory server") service.print_msg("restarting the directory server")
ds.restart() ds.restart()

9
ipa-server/ipa-ldap-updater
View File

@ -69,6 +69,8 @@ def parse_options():
help="Display debugging information about the update(s)") help="Display debugging information about the update(s)")
parser.add_option("-t", "--test", action="store_true", dest="test", parser.add_option("-t", "--test", action="store_true", dest="test",
help="Run through the update without changing anything") help="Run through the update without changing anything")
parser.add_option("-y", dest="password",
help="File containing the Directory Manager password")
config.add_standard_options(parser) config.add_standard_options(parser)
options, args = parser.parse_args() options, args = parser.parse_args()
@ -565,7 +567,12 @@ def main():
"DOMAIN" : domain, "SUFFIX" : suffix, "DOMAIN" : domain, "SUFFIX" : suffix,
"LIBARCH" : libarch, "TIME" : int(time.time()) } "LIBARCH" : libarch, "TIME" : int(time.time()) }
dirman_password = get_dirman_password(fqdn) dirman_password = ""
if options.password:
pw = read_file(options.password)
dirman_password = pw[0].strip()
else:
dirman_password = get_dirman_password(fqdn)
files=[] files=[]
if len(args) < 1: if len(args) < 1:

20
ipa-server/ipaserver/dsinstance.py
View File

@ -304,6 +304,26 @@ class DsInstance(service.Service):
def init_memberof(self): def init_memberof(self):
self.__ldap_mod("memberof-task.ldif", self.sub_dict) self.__ldap_mod("memberof-task.ldif", self.sub_dict)
def apply_updates(self):
"""Run the ipa-ldap-updater tool. Needs to be run after the
configuration file /etc/ipa/ipa.conf has been created.
"""
[pw_fd, pw_name] = tempfile.mkstemp()
os.write(pw_fd, self.dm_password)
os.close(pw_fd)
try:
args = ["/usr/sbin/ipa-ldap-updater",
"-y", pw_name]
try:
ipautil.run(args)
logging.debug("Updates applied")
except ipautil.CalledProcessError, e:
print "Unable to apply updates", e
logging.debug("Unable to apply updates%s" % e)
finally:
os.remove(pw_name)
def __add_referint_module(self): def __add_referint_module(self):
self.__ldap_mod("referint-conf.ldif") self.__ldap_mod("referint-conf.ldif")

3
ipa-server/man/ipa-ldap-updater.1
View File

@ -67,6 +67,9 @@ Enable debug logging when more verbose output is needed
.TP .TP
\fB\-t\fR, \fB\-\-test\fR \fB\-t\fR, \fB\-\-test\fR
Run through the update without changing anything Run through the update without changing anything
.TP
\fB\-y\fR
File containing the Directory Manager password
.SH "EXIT STATUS" .SH "EXIT STATUS"
0 if the command was successful 0 if the command was successful