IntenseWebs/freeipa
3
0
Fork 0
mirror of https://salsa.debian.org/freeipa-team/freeipa.git synced 2025-02-25 18:55:28 -06:00
Code Issues Packages Projects Releases Wiki Activity
996 Commits 11 Branches 60 Tags
0988e1c53c34e474606813d0e3adce1e090c98e7
Commit Graph

166 Commits

Author SHA1 Message Date
Martin Nagy
83fa46a706 ipa-pwpolicy: correctly compare minlife and maxlife Fixes: 463849 2008-10-08 16:44:51 +02:00
Martin Nagy
574ca532b5 Fix a typo in ipa-modgroup causing it to fail Fixes: 463567 2008-10-08 16:44:51 +02:00
Martin Nagy
9b8f7b1eac ipa-change-master-key: Really exit when not run as root Also fix this for ipa-fix-CVE-2008-3274 2008-09-24 20:09:35 +02:00
Simo Sorce
bc70a5146f Remove reference to very unlikely service examples that are not 
currently kerberized (and may never be due to their nature).
 2008-09-18 17:23:12 -04:00
Rob Crittenden
567bab9850 Fix error where usage wasn't being updated properly 2008-09-12 18:14:22 -04:00
Martin Nagy
b5ee09c097 Fix spelling. 2008-09-12 00:03:50 +02:00
Martin Nagy
f33c57e6f8 Fix the -G option of ipa-adduser. Don't add the user if one of the groups doesn't exist. Fixes: 459801 2008-09-11 23:39:28 +02:00
Martin Nagy
7206a6d43c More strict input checks in ipa-pwpolicy and return non-zero when unsuccessful. Fixes: 461213, 461325, 461332, 461543 2008-09-11 23:34:01 +02:00
Martin Nagy
885103c321 Rework config.py and change cli tools. Maintain order of IPA servers from command line, config and DNS. Parse options before detecting IPA configuration. Don't ignore rest of the options if one is missing in ipa.conf. Drop the --usage options, we will rely on --help. Fixes: 458869, 459070, 458980, 459234 2008-09-11 23:34:01 +02:00
Simo Sorce
89ed5a0277 Add a tool to change the kerberos Master Key in case an admin wants to. 
This tool will dump and re-encrypt all keys, then reload and change
the master key in LDAP and in the stash file.
It will also restart the Directory Server and the the KDC
 2008-09-10 15:07:26 -04:00
Rob Crittenden
76bf420754 Display name as separate attributes instead of showing common name. 
We allow one to individually set first and last name but we do not
automatically update the common name so changes don't seem to happen.

451318
 2008-08-22 18:02:20 -04:00
Rob Crittenden
c7ee747ee5 Add options to display a subset of delegations and return 2 if none are found. 
452027
 2008-08-22 17:57:09 -04:00
Rob Crittenden
e9bde984e0 Add tool to manage IPA Search and User policy 
448624, 448625
 2008-08-20 17:39:46 -04:00
Simo Sorce
9648da8f5f Fix versioning for configure.ac and ipa-python/setup.py 
Fix make maintainer-clean

Also make RPM naming consistent by using a temp RELEASE file.
This one helps when testing builds using rpms.
Just 'echo X > RELEASE' to build a new rpms (X, X+1, X+2 ...)

Version 1.1.0 was released some times ago, bump up to 1.1.1
 2008-08-11 18:31:05 -04:00
Rob Crittenden
110f60da8e Change user and group validators to match shadow-utils 
This sets the regex to [a-zA-Z0-9_.][a-zA-Z0-9_.-]{0,30}[a-zA-Z0-9_.$-]?

Also change the validators to return True/False

450613, 457124
 2008-08-07 11:21:33 -04:00
Martin Nagy
f7ca405716 Wrap up the raw_input() to user_input() for convenience and uniformity. 2008-07-23 10:05:06 -04:00
Martin Nagy
b95c05f5c6 Fix attribute parsing so that you can add a DN or an attribute with a '=' character in it. Fixes #454630 2008-07-09 16:54:19 -04:00
Rob Crittenden
3f85a011c6 Be more exacting when deleting a group. 
453222
 2008-07-07 10:23:38 -04:00
Rob Crittenden
469fc7663c Add documentation for -v/--verbose option 
451117
 2008-07-03 15:26:27 -04:00
Rob Crittenden
8752ebd185 Missed adding verbose to a couple of IPAClient invocations. 
443987
 2008-06-11 16:29:12 -04:00
Rob Crittenden
5c916a1cc8 Fix some minor man page issues. 
438771
 2008-06-04 12:50:13 -04:00
Rob Crittenden
5a56b7c885 Fix some minor man page issues. 
438771
 2008-06-03 14:33:18 -04:00
Rob Crittenden
8f639ea924 Add two now options, --addattr and --setattr, to allow arbitrary attributes to be added and set when a new user or group is created. 
Make the user password not mandatory and add new option, -P, to prompt
for a password interactively.

449006
 2008-05-30 11:22:56 -04:00
Rob Crittenden
e3ba80e3d3 Actually pass along the verbose option to IPAClient. 
443987
 2008-05-29 16:04:28 -04:00
Rob Crittenden
0f9b944dde Add python-configobj as a Requires and do some other specfile cleanups. 
432814
 2008-05-28 14:09:08 -04:00
Rob Crittenden
3daa94ccc0 Catch name resolution errors coming from the socket module. 
442650
 2008-05-13 12:00:21 -04:00
Rob Crittenden
570b71372f Second half of the redoing how the version is managed. 2008-05-07 18:26:03 -04:00
Rob Crittenden
5ad2af3429 Redo the way versioning works in freeIPA. 
The file VERSION is now the sole-source of versioning.

The generated .spec files will been removed in the maintainer-clean targets
and have been removed from the repository.

By default a GIT build is done. To do a non-GIT build do:

 $ make TARGET IPA_VERSION_IS_GIT_SNAPSHOT=no

When updating the version you can run this to regenerate the version:

 $ make version-update

The version can be determined in Python by using ipaserver.version.VERSION
 2008-05-05 13:53:57 -04:00
Rob Crittenden
23fe67996c Remove duplicated "the" and add some formatting to the EXAMPLE for clarity. 
443012
 2008-05-05 11:10:40 -04:00
Rob Crittenden
12ea8efc0b Add --verbose option so the HTTP headers and XML request/response can be seen. 
Also re-do the way modules are imported. I was attemping to have ^C handled
gracefully but the way I did it could mask other problems.

443987
 2008-04-25 10:35:22 -04:00
Rob Crittenden
47e6a75cff Add nfs as a service principal type. 
440242
 2008-04-23 15:42:41 -04:00
Rob Crittenden
def28f3d5b Become version 1.0.0 2008-04-16 14:29:17 -07:00
Rob Crittenden
78bdb75291 Move print statement to the correct scope so it displays both lock and unlock. 
442625
 2008-04-15 21:27:04 -04:00
Simo Sorce
f24842fd9d is_integer returns the integer, don't use an if clause, just check it, if it 
is wrong it will just throw an exception and exit.
Fix error reporting to use the canonical str(e)
 2008-04-08 14:35:26 -04:00
Rob Crittenden
3ec54383f9 Fix error where password was getting set wrong if passed in on command-line. 
439905
 2008-04-08 15:44:05 -04:00
Rob Crittenden
bde9959091 When getting members let user indicate what type of member they want. 
The memberOf attribute includes members that are directly in the group
via the "member" attribute and those that are included as a result of
being in a group that is in the group.

The UI needs to be able to distinguish between the two.

438706
 2008-03-27 09:54:41 -04:00
Rob Crittenden
c3fedca013 Don't define bogus realm/server in configuration file by default 
Add default exception handler to avoid backtraces in cmdline tools
Enhance error message when the IPA server or realm can't be found

437565
 2008-03-17 13:16:56 -04:00
Rob Crittenden
6b960c008a Allow groups to be added as a group membe 
435134
 2008-02-28 11:34:34 -05:00
Rob Crittenden
999bd4fb1e In the UI we don't want to display Edit links unless someone can actually 
edit things. We use the 'editors' group for this. This group itself grants
no permission other than displaying certain things in the UI.

In order to be in the editors group a user must be a member of a group that
is the source group in a delegation. The memberof plugin will do all the
hard work to be sure that a user's memberof contains cn=editors if they
are in a delegated group.

432874
 2008-02-27 15:14:52 -05:00
Rob Crittenden
ad8096b51f - Centralize try/except so the entire program is covered. This make it 
possible to catch KeyboardInterrupt during the import process.
- Add function for handling python differences with GSSError

434798
 2008-02-27 10:40:18 -05:00
Rob Crittenden
d6d12e9dc5 Require that service principals resolve to a DNS A record. 
There is a --force option for those who know what they are doing.

433483
 2008-02-26 13:51:56 -05:00
Rob Crittenden
6d759d7dcb Move ipa-getkeytab man page into proper subdir 
433878
 2008-02-25 14:56:09 -05:00
Rob Crittenden
44797e3917 Command-line utility to manage password policy 
432814
 2008-02-25 13:11:15 -05:00
Rob Crittenden
b4c11c9bea Remove reference to wrong command 
Clean up language around automatically appending the Kerberos realm

433800
 2008-02-21 22:37:36 -05:00
Rob Crittenden
84d1e08d76 Become freeipa-0.99.0 2008-02-21 16:11:42 -05:00
Rob Crittenden
f82b3b0b28 Handle input range properly and catch KeyboardInterrupt and exit gracefully 
433496
 2008-02-20 09:32:25 -05:00
Rob Crittenden
3817577525 Handle a ctrl-C gracefully while getting the new password 
Resolves 433053
 2008-02-20 09:26:34 -05:00
Rob Crittenden
9e3963acd5 Include some missing man pages 2008-02-08 16:06:15 -05:00
Rob Crittenden
a5da8d1523 Include some missing utilities in the Makefile 2008-02-08 15:55:13 -05:00
Rob Crittenden
97d9c235dd Set the license uniformly to GPLv2 only. 2008-02-04 15:15:52 -05:00