IntenseWebs/freeipa
3
0
Fork 0
mirror of https://salsa.debian.org/freeipa-team/freeipa.git synced 2025-01-02 12:16:56 -06:00
Code Issues Packages Projects Releases Wiki Activity
387 Commits 11 Branches 59 Tags 60 MiB
02e5a6599b
Commit Graph

312 Commits

Author SHA1 Message Date
Simo Sorce
de96b9a9da Megre in form upstream 2007-08-30 19:42:39 -04:00
Kevin McCarthy
90a34f3865 Add auto-suggest for uid and email fields. 2007-08-30 15:10:48 -07:00
Kevin McCarthy
59f843517d Add scriptaculous effects library (will add more if they become necessary). 
Scriptaculous <http://script.aculo.us/> is released under an MIT license.
 2007-08-30 15:05:12 -07:00
Simo Sorce
a9b9a55392 Fix copy&paste error, its not the conf files we need access to, 
we need to access the generated keytabs
 2007-08-30 15:31:27 -04:00
Simo Sorce
a8fe485065 Integrate corrections pointed out on the list 2007-08-30 12:23:39 -04:00
Simo Sorce
bebc413366 Finalize DIT, this is waht we are probably going to have in the end, 
or something very close to this one
Add default groups and admin user

TODO: need to discuss more in deep uid/gid generation, this will
      probably change as soon as the DNA plugin is activated
 2007-08-29 18:07:05 -04:00
Karl MacMillan
09621f1319 Added freeipa logo. 0001-01-01 00:00:00 +00:00
Simo Sorce
f0ebdce024 Fix copy&paste error, its not the conf files we need access to, 
we need to access the generated keytabs
 2007-08-30 15:31:27 -04:00
Kevin McCarthy
50450d6acb UI cleanup 2007-08-29 16:49:46 -07:00
Kevin McCarthy
e9bd8dee3b Change user search to be asynchronous. 
This way it returns results even if the search times out.
The find_users() search now returns a counter as the first result, which
is set to -1 if the results are partial.
 2007-08-28 16:01:07 -07:00
Kevin McCarthy
ef2dc5cefa Changes for larger data demo. 
Add fields to search results
Put result() call inside try block - it's throwing an exception
Trap ADMINLIMIT and SIZELIMIT exceptions
 2007-08-28 09:20:12 -07:00
rcritten@redhat.com
eebaa73d3d Implement delete users and groups 
Implement adding a group to a group
Some other small fixups
Add new cmd-line tool ipa-delgroup
 2007-08-28 13:52:08 -04:00
Karl MacMillan
6eea6664e0 This patch wraps binary data in an xmlrpclib Binary object. This 
removes the need for LDIF conversion.  It will make TurboGears direct
code faster, but should keep xmlrpc about the same speed.

The patch also swaps out ldap.cidict for the IPA CIDict class.  IPA code
should only use the CIDict class now.
 0001-01-01 00:00:00 +00:00
Kevin McCarthy
e31b526c81 Enhanced user search: 
- "configurable" fields to search on
- tokenize search words
- prioritize exact matches over partial matches
- split match filter generation into a re-usable function.
Other updates:
- use finally block to return ldap connections
- update web gui to use new get_user methods
 2007-08-27 11:30:26 -07:00
Karl MacMillan
f437ecfad1 Fix minor error in previous patch. 0001-01-01 00:00:00 +00:00
rcritten@redhat.com
a5b7e3f56b Include any LDAP error strings in XML-RPC Fault exceptions 
Put a try/except around attempts to determine user uniqueness
 2007-08-27 13:45:28 -04:00
rcritten@redhat.com
861cda3cb5 Initial support for Groups 
Create separate object for Users and Groups (using same base class)
Check for uniqueness before adding new users and groups
Remove user_container from everything but add operations
Abstract out a number of functions that are common across users and groups
Make sure all strings passed in to be in a filter are checked
Add new error message: No modifications specified
 2007-08-24 15:42:56 -04:00
rcritten@redhat.com
240a99b6f3 Move add user logic to the server side 2007-08-23 11:57:25 -04:00
rcritten@redhat.com
8879ee173e Handle optional arguments by using the value __NONE__ over XML-RPC. 
rpcclient.py must call XML-RPC functions with all arguments.
Removed encode_args and decode_args. They were the source of most of the
  argument pain. Now opts is alwyas appended to the end of the arguments
  so MUST be the last argument in any server-side function (can be None)
Allow the User object to handle unicode data
Small fixes to command-line tools to be friendlier
Broke out get_user() into get_user_by_dn() and get_user_by_uid()
Need to request more than just 'nsAccountLock' attribute when trying to
  see if a user is already marked deleted. If it is blank the record
  coming back is empty. Add 'uid' to the list to guarantee something coming
  back (dn is handled specially)
Added user_container attribute to get_user_* and add_user so the caller
  can specify where in the tree the user will be searched for/added.
Added global default value for user_container
 2007-08-23 09:44:00 -04:00
Pete Rowley
23508d33b5 Add DS task to fix up memberof, turn debug build back on 2007-08-21 12:41:32 -07:00
Kevin McCarthy
7691653c0a Create ipaerror module. 
Move LDAPError trapping/conversion into the ipaldap module.
Fix xmlrpc layer to encode/decode ipaerrors properly.
Also, implement mid-air collision exception for updates.
 2007-08-22 10:30:51 -07:00
Kevin McCarthy
a8f302aa9f Move ldap search filter escaping into the funcs.py layer. 2007-08-21 14:26:36 -07:00
Simo Sorce
ac926646ea Fix escaping code, missing "unicode" string identifier in one of the value 
comparisons
 2007-08-21 16:25:02 -04:00
Kevin McCarthy
f5e30866d1 Escape search input. Search by uid and cn. 2007-08-20 14:23:23 -07:00
Kevin McCarthy
6b69d9cc46 Remove auto-wildcarding of uid search. 
Remove list users link.
 2007-08-20 13:14:00 -07:00
Kevin McCarthy
4c8f2346a0 Improved modlist generator. 2007-08-20 16:18:12 -07:00
Kevin McCarthy
cb03961ff1 Convert add_user to take a user instead of a dict. 2007-08-20 12:10:50 -07:00
Kevin McCarthy
c113d932b1 Move utf-8 conversion inside user.py (for updates). 2007-08-20 11:39:04 -07:00
Kevin McCarthy
66d3f1e730 Embed origiginal values inside user, and have update_user pass in a user 
object.  Based on rcrit's original patch.
Push scalar to list value conversion inside funcs.py.
 2007-08-20 10:50:11 -07:00
Kevin McCarthy
5f0f192ae3 change strings to be encoded using value.encode("utf-8"). 
fix update to set 'cn' instead of 'sn'.
remove str() in funcs.add_user().
 2007-08-17 15:32:05 -07:00
Kevin McCarthy
a0e2fa00f1 Manual merge changes in for the cidict/ipaclient add_user() 2007-08-17 14:27:54 -07:00
Simo Sorce
48bb474e68 Add interactive prompts to ipa-server-install 
Change unattended flag to be -U
Change master password flag to be -P instead of -m
Improve ipa-client-install readability for user prompts
 2007-08-20 18:40:32 -04:00
Simo Sorce
aacfce9cf1 Remove dependncy on libmhash and use openssl md4 functions 
Remove all dependencies on mhash
Remove code optimizatrion from Makefiles, right now these are
developers targeted builds, so it is better to have debugging
symbols around
 2007-08-20 15:38:47 -04:00
Kevin McCarthy
8a0c3cb945 Change userlist into a quick search form. 
Add hack to update cn using givenname+sn (for now).
Change funcs.find_users() to not error if no results.
 2007-08-17 10:58:56 -07:00
Kevin McCarthy
3184b5cd97 Remove ':' from the label widgets so they can be used outside forms. 
Add ':' into the edit/new/show pages.
 2007-08-17 10:59:42 -07:00
Simo Sorce
29a8f74fad Complete proper daemonization by closing std* descriptors. 
This fixes install as well as /sbin/services does not hang anymore
 2007-08-17 12:44:01 -04:00
Simo Sorce
9238e3cb4a Merge with upstream 2007-08-17 10:41:45 -04:00
Simo Sorce
d41db21a09 Add forgotten ipa-kpasswd.init 2007-08-17 10:34:34 -04:00
Kevin McCarthy
0ddf0699a5 Add update user to gui. 
Fix fields to be lowercase in web gui (server now returns them lowercase).
Fix ipaclient.py to refer to lowercase fields when adding a user.
Fix user.getValue() to check isinstance(value,list) instead of value[0].
 2007-08-16 15:05:36 -07:00
rcritten@redhat.com
05f6a22110 Implement user inactivation 
Comment some functions
Add attribute argument to get_user()
 2007-08-17 10:03:33 -04:00
rcritten@redhat.com
5f0f23ee91 Ensure that the Apache server is in forked mode 
Add ability to update existing users
Try to prevent fetching and setting empty strings
 2007-08-14 17:22:05 -04:00
Simo Sorce
547f501fae Patch from Rob to quick fix an error in the previous one 2007-08-16 18:59:58 -04:00
rcritten@redhat.com
cfaa28150b Basic LDAP connection pooling 
Implement user search
 2007-08-13 16:41:38 -04:00
Simo Sorce
794ef65abc make pluginlibrary files executable like all other dirsrv plugins 2007-08-16 18:47:29 -04:00
Simo Sorce
0a6007bcf2 Fix the relative name, Richm explained that the allowed values are either: 
/full/path/plugin-name.so
or just
plugin-name (no .so as different arches have different extensions)
 2007-08-16 17:59:23 -04:00
Simo Sorce
f6605ca792 Add libmhash as dependency for ipa_wpd_extop 2007-08-16 17:58:24 -04:00
Simo Sorce
59ada5daeb Make ipa-kpasswd start immediately 2007-08-15 22:17:42 -04:00
Simo Sorce
3d5c8b326b Improve ipa-kpasswd so that it can be installed and started 
Make it daemonize
Make it use syslog (LOG_DAEMON facility)
 2007-08-15 22:15:35 -04:00
Simo Sorce
82f24bb490 General fixes. 
Do not start ipa_kpasswd by default yet
 2007-08-15 21:35:35 -04:00
Simo Sorce
1e59adbe45 in F7 all directory names have changed from fedora-ds to dirsrv 
which should also be the name used in DS 8.0, change all occurences
 2007-08-15 19:45:18 -04:00
Simo Sorce
9faa5ce77e Use relative .so names for plugin so that lib/lib64 does not get in the way 
change the pwd-extop conf ldif to a more sensible name
 2007-08-15 18:55:20 -04:00
Simo Sorce
be34ddfc28 Merge from upstream 2007-08-15 18:31:53 -04:00
Simo Sorce
788149e2e5 Activate the passwd extop plugin and ipa-kpasswd daemon 2007-08-15 18:30:15 -04:00
Simo Sorce
a8e489e065 Rely on the default path 
Fix description
 2007-08-15 18:29:51 -04:00
Simo Sorce
409318ddc3 Fix dependency and install ipa-kpasswd init script 2007-08-15 18:29:07 -04:00
Simo Sorce
9ad12ae2eb Clean-up code to avoid Wall warnings 2007-08-15 11:37:03 -04:00
Simo Sorce
6690e4f131 Add deps to README 2007-08-15 11:22:20 -04:00
Simo Sorce
c7aed23e82 Clean up code so that Wall returns 0 complaints 2007-08-15 11:21:49 -04:00
Karl MacMillan
92be45e3fe Fix -Wall for memberof plugin (from Pete Rowley). 0001-01-01 00:00:00 +00:00
Kevin McCarthy
2ef4792fd1 - Add password generator method to controller. 
This uses the random.SystemRandom() method to generate an 8-digit
  alphanumeric password.
- Add ajax call to usernew and useredit forms to generate a new password
- Add the prototype javascript library: http://www.prototypejs.org/
  prototype is distributed with the MIT license.
- Add a checkbox to toggle editing (and displaying) the password.
- Change usershow template to use same field labels as the edit and new forms.
 2007-08-14 09:40:13 -07:00
Kevin McCarthy
10cbfe8787 Split userform into edit and new forms. 
(They will likely diverge so no sense forcing them together).
Add css for required fields.
Add "_orig" hidden fields to the edit form in prep for sending only modified
fields.
 2007-08-10 16:31:59 -07:00
Karl MacMillan
c1b3a4c412 Install server plugins in correct lib directory. 0001-01-01 00:00:00 +00:00
Karl MacMillan
0144922fd7 Merge from bundle. 0001-01-01 00:00:00 +00:00
Kevin McCarthy
b3aba86b2e Add images and empty files, which didn't seem to come through in the 
hg export properly.
 2007-08-12 05:59:49 -07:00
kmccarth@dhcp-172-16-25-136.sfbay.redhat.com
728e44833c Addiing initial turbogears web gui. 
Contains simple user add, list, and view pages.
 2007-08-12 04:53:18 -07:00
rcritten@redhat.com
a3e786e22e Allow the API to specify the location in the tree to add users, defaulting 
to ou=users,ou=default,$basedn
 2007-08-10 10:30:15 -04:00
rcritten@redhat.com
400ced55eb Start the DS and KDC on boot 2007-08-09 13:44:32 -04:00
Simo Sorce
34b439e838 Fix location of the binary 
Add a comment on the ldap code for the future
 2007-08-09 17:10:41 -04:00
Simo Sorce
5a7c853ec7 export kpasswd keytab during installation process 2007-08-09 16:55:23 -04:00
Simo Sorce
d60f233223 typo 2007-08-09 14:58:28 -04:00
Simo Sorce
a59c36b394 merge in changes from upstream 2007-08-09 14:52:54 -04:00
Simo Sorce
950bddf2a3 remove unknown patch file 2007-08-09 14:47:52 -04:00
Simo Sorce
588fa2f323 Add dependency and a comment 2007-08-08 22:20:07 -04:00
Simo Sorce
80bd4aa9f9 Fix the bind zone template, or kpasswd will not work 2007-08-08 22:19:37 -04:00
Simo Sorce
c13bbdeb7a set preauth on kadmin/changepw otherwise the kpasswd can't acquire a ticket 2007-08-08 22:19:03 -04:00
Simo Sorce
a50720e7d4 Make the daemon init it's own tickets. 
Make it blacklist clients until the previous operation is not over.
General bugfixing.
 2007-08-08 22:18:14 -04:00
Simo Sorce
7ca7a4b9e4 move ipa-kpasswd to a new location to conform to the new tree layout 2007-08-01 16:01:52 -04:00
Simo Sorce
fbfee82317 Try to fix dir layout and recover missing files 2007-08-01 15:58:52 -04:00
Simo Sorce
96d292b735 Merge from upstream 2007-08-01 15:26:08 -04:00
Karl MacMillan
2e1f317b09 Updated dep list. 0001-01-01 00:00:00 +00:00
Karl MacMillan
e27ab98fd2 Integrate memberof plugin into build. 0001-01-01 00:00:00 +00:00
Pete Rowley
d3415f85b0 initial commit of memberof DS plugin 2007-08-10 16:06:23 -07:00
Karl MacMillan
0d981af820 Various build system fixes. 0001-01-01 00:00:00 +00:00
kmccarth@redhat.com
cdaee95230 Addiing initial turbogears web gui. 
Contains simple user add, list, and view pages.
 2007-08-12 04:53:18 -07:00
Karl MacMillan
cf93b1bc64 Fixed merge. 0001-01-01 00:00:00 +00:00
Karl MacMillan
b1831b4593 Fix typo / buglets in setup scripts. 
Add fallback to ds_newinst.pl.
 0001-01-01 00:00:00 +00:00
Karl MacMillan
9a01f353cf Bump version numbers for release. 0001-01-01 00:00:00 +00:00
Karl MacMillan
86c223f472 Merge. 0001-01-01 00:00:00 +00:00
rcritten@redhat.com
b9b06a2a60 Generate /etc/httpd/conf.d/ipa.conf from a template so the realm can 
be set during installation
 2007-08-06 10:51:23 -04:00
rcritten@redhat.com
993f76fe60 - Abstracted client class to work directly or over RPC 
- Add mod_auth_kerb and cyrus-sasl-gssapi to Requires
- Remove references to admin server in ipa-server-setupssl
- Generate a client certificate for the XML-RPC server to connect to LDAP with
- Create a keytab for Apache
- Create an ldif with a test user
- Provide a certmap.conf for doing SSL client authentication
- Update tools to use kerberos
- Add User class
 2007-08-06 10:05:53 -04:00
Karl MacMillan
cef59d76eb Minor fix to adduser. 
Make ipa-server-install restart htppd
 0001-01-01 00:00:00 +00:00
Karl MacMillan
88a1ab65ce Updates to build kpaswd and the slapi plugins. 0001-01-01 00:00:00 +00:00
Karl MacMillan
548698a887 Add ntpd requirement. 0001-01-01 00:00:00 +00:00
kmccarth@redhat.com
88ab86fa37 Rename 'gn' to 'givenName' 2007-08-02 15:01:59 -07:00
Karl MacMillan
66ee656155 Added spec files for python and admintools. 0001-01-01 00:00:00 +00:00
Karl MacMillan
8cf45633fe Fixed broken patches and server spec. 0001-01-01 00:00:00 +00:00
Karl MacMillan
7d95cd612c Final reorginzation to reflect packaging. 0001-01-01 00:00:00 +00:00
Karl MacMillan
aed1f91105 Add local-dist target. 
Remove hard-coded config.
 0001-01-01 00:00:00 +00:00
Karl MacMillan
1d8d4222ab Second (final) part of xmlrpc patch. 0001-01-01 00:00:00 +00:00
Karl MacMillan
4d656111e6 First part of xml-rpc patch. 0001-01-01 00:00:00 +00:00
Karl MacMillan
95bdb1bdf0 Updated spec with nss-tools and openldap-clients 0001-01-01 00:00:00 +00:00
Karl MacMillan
e811c87b1c Update dsinstance.py to use setup-ds.pl instead of ds_newinst.pl. 0001-01-01 00:00:00 +00:00
Karl MacMillan
ee1a0bb90f First working spec file. 0001-01-01 00:00:00 +00:00
Karl MacMillan
19f5aaa424 Fixed spec. 0001-01-01 00:00:00 +00:00
Karl MacMillan
c7a3bbe3ac Update for DESTDIR 0001-01-01 00:00:00 +00:00
Karl MacMillan
618b98fea7 Finish python library reorg. 0001-01-01 00:00:00 +00:00
Karl MacMillan
bac241ffc3 More reorgnization. 0001-01-01 00:00:00 +00:00
Karl MacMillan
f7d005a854 Finish removing extra files. 0001-01-01 00:00:00 +00:00
Karl MacMillan
1e52deca8f Removed unnecessary files (which were added to work around a mercurial bug) 0001-01-01 00:00:00 +00:00
Karl MacMillan
b8a0512998 Update for new python library layout. 0001-01-01 00:00:00 +00:00
Karl MacMillan
899daaf048 First cut at spec files and Makefile for ipa-server. 0001-01-01 00:00:00 +00:00
Karl MacMillan
9d5b946fda Reorganized repo to reflect packaging. 0001-01-01 00:00:00 +00:00