IntenseWebs/freeipa
3
0
Fork 0
mirror of https://salsa.debian.org/freeipa-team/freeipa.git synced 2025-01-17 19:52:58 -06:00
Code Issues Packages Projects Releases Wiki Activity
648 Commits 11 Branches 59 Tags 60 MiB
3817577525
Commit Graph

9 Commits

Author SHA1 Message Date
Rob Crittenden
97d9c235dd Set the license uniformly to GPLv2 only. 2008-02-04 15:15:52 -05:00
Rob Crittenden
69765f52ce Groups may be iterated over so should be an empty list, not None 2007-12-05 15:12:24 -05:00
Rob Crittenden
5011f64243 Restrict access to some parts of the UI to those in the admins group 2007-11-13 11:15:07 -05:00
Rob Crittenden
010fb65bfd define Self-Service as editting your own record. 
This has the side-effect of removing the realm from Loggin in as. This
can be changed by using user_name instead of display_name in master.kid.
 2007-11-02 17:41:24 -04:00
Kevin McCarthy
5cdfc5bd3b Add set_krbccache() calls to new controller methods. 
Small fix to proxyprovider for anonymous case.
 2007-09-20 14:53:23 -07:00
Simo Sorce
fbfefe6b0e Merge conflicts between rob and kevin patches 2007-09-20 16:58:54 -04:00
rcritten@redhat.com
b85668579e Use ticket forwarding with TurboGears. mod_proxy forwards the principal 
name and location of the keytab. In order for this keytab to be usable
 TurboGears and Apache will need to run as the same user. We will also need
 to listen only on localhost in TG.
 2007-09-14 17:19:02 -04:00
Kevin McCarthy
b4297caa8b Small fixes to proxyprovider. 2007-09-11 14:45:53 -07:00
rcritten
182fbe3094 Enable mod_proxy to sit in front of TurboGears and pass along the 
kerberos principal name
Add an identity an visit class to TurboGears that can handle the user
 without requiring a database
Update the UI to show the user correctly.
Note that this is currently disabled. It is hardcoded to always return the
 principal test@FREEIPA.ORG in proxyprovider.py
It doesn't handle an unauthorized request because that can never happen.
 2007-09-10 16:33:01 -04:00