Commit Graph

15410 Commits

Author SHA1 Message Date
Simo Sorce
584baa7ee2 merge ipa-server/ipaserver/util.py into ipa-python/ipautil.py
this way freeipa-client does not depend on freeipa-server
2007-09-04 16:13:15 -04:00
Simo Sorce
48e70a4bf0 Merge with upstream 2007-09-04 15:40:24 -04:00
Simo Sorce
abeda55e34 Add password request for admin user
Set password for admin user using the Directory Mangaer account
and the mozldapldappaswd binary to get and SSL connection
Fix some timeout problems with deploying keytabs
Fix ipa_pwd_extop to actuallt correctly detect an SSL connection
Do not ask for the user to use for the directory unless 'dirsrv' is
 an existing user which may clash, create it silently
2007-08-31 18:40:01 -04:00
Simo Sorce
7a0629ea55 More DIT fixes discovered after testing 2007-08-31 18:36:54 -04:00
Kevin McCarthy
00e299467c Add account deactivation checkbox.
Fix genModList to lowercase all keys and use CIDict.
2007-08-31 10:59:26 -07:00
Kevin McCarthy
c85c8eede3 Add 'test' target to makefiles. Hook up ipautil tests to run. 2007-09-04 10:22:45 -07:00
Simo Sorce
de96b9a9da Megre in form upstream 2007-08-30 19:42:39 -04:00
Simo Sorce
12b46527c6 Complete autodiscovery with autoconfiguration
The code is still not perfect and rely on a yet unreleased
nss_ldap package that fix dns discovery problems within nss_ldap
itself.
Also the manipulation of krb5.conf need to be improved
2007-08-30 19:40:54 -04:00
Kevin McCarthy
90a34f3865 Add auto-suggest for uid and email fields. 2007-08-30 15:10:48 -07:00
Kevin McCarthy
59f843517d Add scriptaculous effects library (will add more if they become necessary).
Scriptaculous <http://script.aculo.us/> is released under an MIT license.
2007-08-30 15:05:12 -07:00
Simo Sorce
a9b9a55392 Fix copy&paste error, its not the conf files we need access to,
we need to access the generated keytabs
2007-08-30 15:31:27 -04:00
Simo Sorce
a8fe485065 Integrate corrections pointed out on the list 2007-08-30 12:23:39 -04:00
Simo Sorce
bebc413366 Finalize DIT, this is waht we are probably going to have in the end,
or something very close to this one
Add default groups and admin user

TODO: need to discuss more in deep uid/gid generation, this will
      probably change as soon as the DNA plugin is activated
2007-08-29 18:07:05 -04:00
Simo Sorce
46eeca740e Merge in with upstream 2007-08-28 10:46:03 -04:00
Simo Sorce
4702eb9075 Initial configuration library import 2007-08-28 10:44:43 -04:00
Kevin McCarthy
c7c8aa0926 Add ipautil, which contains CIDict - a case insensitive dict.
This version of the cidict extends the dict class, which allows it to
play nicely with turbogears.
Also includes extensive tests.
2007-08-24 10:31:45 -07:00
rcritten@redhat.com
861cda3cb5 Initial support for Groups
Create separate object for Users and Groups (using same base class)
Check for uniqueness before adding new users and groups
Remove user_container from everything but add operations
Abstract out a number of functions that are common across users and groups
Make sure all strings passed in to be in a filter are checked
Add new error message: No modifications specified
2007-08-24 15:42:56 -04:00
rcritten@redhat.com
240a99b6f3 Move add user logic to the server side 2007-08-23 11:57:25 -04:00
rcritten@redhat.com
8879ee173e Handle optional arguments by using the value __NONE__ over XML-RPC.
rpcclient.py must call XML-RPC functions with all arguments.
Removed encode_args and decode_args. They were the source of most of the
  argument pain. Now opts is alwyas appended to the end of the arguments
  so MUST be the last argument in any server-side function (can be None)
Allow the User object to handle unicode data
Small fixes to command-line tools to be friendlier
Broke out get_user() into get_user_by_dn() and get_user_by_uid()
Need to request more than just 'nsAccountLock' attribute when trying to
  see if a user is already marked deleted. If it is blank the record
  coming back is empty. Add 'uid' to the list to guarantee something coming
  back (dn is handled specially)
Added user_container attribute to get_user_* and add_user so the caller
  can specify where in the tree the user will be searched for/added.
Added global default value for user_container
2007-08-23 09:44:00 -04:00
Pete Rowley
23508d33b5 Add DS task to fix up memberof, turn debug build back on 2007-08-21 12:41:32 -07:00
Kevin McCarthy
7691653c0a Create ipaerror module.
Move LDAPError trapping/conversion into the ipaldap module.
Fix xmlrpc layer to encode/decode ipaerrors properly.
Also, implement mid-air collision exception for updates.
2007-08-22 10:30:51 -07:00
Kevin McCarthy
a8f302aa9f Move ldap search filter escaping into the funcs.py layer. 2007-08-21 14:26:36 -07:00
Simo Sorce
ac926646ea Fix escaping code, missing "unicode" string identifier in one of the value
comparisons
2007-08-21 16:25:02 -04:00
Kevin McCarthy
f5e30866d1 Escape search input. Search by uid and cn. 2007-08-20 14:23:23 -07:00
Kevin McCarthy
6b69d9cc46 Remove auto-wildcarding of uid search.
Remove list users link.
2007-08-20 13:14:00 -07:00
Kevin McCarthy
4c8f2346a0 Improved modlist generator. 2007-08-20 16:18:12 -07:00
Kevin McCarthy
cb03961ff1 Convert add_user to take a user instead of a dict. 2007-08-20 12:10:50 -07:00
Kevin McCarthy
c113d932b1 Move utf-8 conversion inside user.py (for updates). 2007-08-20 11:39:04 -07:00
Kevin McCarthy
66d3f1e730 Embed origiginal values inside user, and have update_user pass in a user
object.  Based on rcrit's original patch.
Push scalar to list value conversion inside funcs.py.
2007-08-20 10:50:11 -07:00
Kevin McCarthy
5f0f192ae3 change strings to be encoded using value.encode("utf-8").
fix update to set 'cn' instead of 'sn'.
remove str() in funcs.add_user().
2007-08-17 15:32:05 -07:00
Kevin McCarthy
a0e2fa00f1 Manual merge changes in for the cidict/ipaclient add_user() 2007-08-17 14:27:54 -07:00
Simo Sorce
48bb474e68 Add interactive prompts to ipa-server-install
Change unattended flag to be -U
Change master password flag to be -P instead of -m
Improve ipa-client-install readability for user prompts
2007-08-20 18:40:32 -04:00
Simo Sorce
aacfce9cf1 Remove dependncy on libmhash and use openssl md4 functions
Remove all dependencies on mhash
Remove code optimizatrion from Makefiles, right now these are
developers targeted builds, so it is better to have debugging
symbols around
2007-08-20 15:38:47 -04:00
Karl MacMillan
438b548f19 Correct installation path for dna plugin. 0001-01-01 00:00:00 +00:00
Kevin McCarthy
2adeed3029 Add search box in header.
Change account status to use select list and 'active'/'inactive' values.
Improve autosuggest to keep suggesting unless you overwrite a suggestion
(if you correct the name, it will re-suggest).
2007-09-06 11:09:12 -07:00
Karl MacMillan
09621f1319 Added freeipa logo. 0001-01-01 00:00:00 +00:00
Simo Sorce
f0ebdce024 Fix copy&paste error, its not the conf files we need access to,
we need to access the generated keytabs
2007-08-30 15:31:27 -04:00
Kevin McCarthy
a57fe697a7 Fix python-ldap attribution for cidict. 2007-08-27 09:49:35 -07:00
Kevin McCarthy
50450d6acb UI cleanup 2007-08-29 16:49:46 -07:00
Kevin McCarthy
e9bd8dee3b Change user search to be asynchronous.
This way it returns results even if the search times out.
The find_users() search now returns a counter as the first result, which
is set to -1 if the results are partial.
2007-08-28 16:01:07 -07:00
Kevin McCarthy
ef2dc5cefa Changes for larger data demo.
Add fields to search results
Put result() call inside try block - it's throwing an exception
Trap ADMINLIMIT and SIZELIMIT exceptions
2007-08-28 09:20:12 -07:00
rcritten@redhat.com
eebaa73d3d Implement delete users and groups
Implement adding a group to a group
Some other small fixups
Add new cmd-line tool ipa-delgroup
2007-08-28 13:52:08 -04:00
Karl MacMillan
6eea6664e0 This patch wraps binary data in an xmlrpclib Binary object. This
removes the need for LDIF conversion.  It will make TurboGears direct
code faster, but should keep xmlrpc about the same speed.

The patch also swaps out ldap.cidict for the IPA CIDict class.  IPA code
should only use the CIDict class now.
0001-01-01 00:00:00 +00:00
Kevin McCarthy
e31b526c81 Enhanced user search:
- "configurable" fields to search on
- tokenize search words
- prioritize exact matches over partial matches
- split match filter generation into a re-usable function.
Other updates:
- use finally block to return ldap connections
- update web gui to use new get_user methods
2007-08-27 11:30:26 -07:00
Karl MacMillan
14d78e9170 Added tag milestone_2 for changeset b0ff0d52ef89 0001-01-01 00:00:00 +00:00
Karl MacMillan
268dd829df Added dna plugin to spec. 0001-01-01 00:00:00 +00:00
Kevin McCarthy
4e242b5dc1 Small UI tweeks
- Rename buttons
- Add fake "logged in as" text
- Increase font size and spacing for sidebar
- Fix search messages for no results
- Open ipa footer link in new window
2007-09-05 16:59:55 -07:00
Kevin McCarthy
d036eb0ac9 Add password expiration messages to user show/edit pages.
Add userhelper module to provide ui logic.
Fix uid/email suggest to lowercase first.
2007-09-05 15:54:04 -07:00
Kevin McCarthy
945713ca30 Fix dsinstance.py and krbinstance.py imports 2007-09-06 16:21:07 -07:00
rcritten@redhat.com
9b30f46744 Enable LDAP SASL authentication using a forwarded kerberos ticket
Handle both SASL auth and proxied authentication
Refactor LDAP connection code to be simpler
Other small bug fixes
2007-09-05 13:14:23 -04:00