IntenseWebs/freeipa
3
0
Fork 0
mirror of https://salsa.debian.org/freeipa-team/freeipa.git synced 2025-02-25 18:55:28 -06:00
Code Issues Packages Projects Releases Wiki Activity
535 Commits 11 Branches 60 Tags
87bc5c4d6394ce2b0f0a5e18bcff5721b34ebdc1
Commit Graph

95 Commits

Author SHA1 Message Date
Rob Crittenden
40ff6f21db Prompt user before downloading a keytab that this will create a new secret, 
breaking any existing keytabs for that principal.
 2007-12-06 11:56:14 -05:00
Rob Crittenden
b75d735b7e Add default e-mail domain to the IPA configuration 2007-12-10 11:53:00 -05:00
Rob Crittenden
059e8f00ef Add principal management templates 2007-12-10 09:58:18 -05:00
Rob Crittenden
2a2d866552 Make uid an editable field in the Edit UI so we can do RDN changes 
Fix group RDN changes
Remove a copy/paste error in the group UI update that caused 2 updates
Fix variable name so groups don't get user objectclasses
Remove color CSS for field backgrounds as they override disabled field display
 2007-12-06 15:36:42 -05:00
Rob Crittenden
86d80f12ca Add some javascript so we can put focus on the first field of the page. 2007-12-06 17:49:56 -05:00
Rob Crittenden
7e2f44df45 Add 'Edit Policy' button at top of page. 2007-12-06 17:46:09 -05:00
Rob Crittenden
849803d37a Always show the edit link on your own record 2007-12-06 17:07:40 -05:00
Rob Crittenden
15b7dc6ff9 Add UI for service principal creation and keytab retrieval 2007-12-05 15:17:11 -05:00
Rob Crittenden
2fbe5cbf49 Phase 1 of allowing admins to set the default object classes for users & groups 
This adds the UI and does error checking of the selected object classes but
it doesn't actually use the values yet.

It also generalizes some functions for doing multi-valued fields.
 2007-12-04 13:18:37 -05:00
Rob Crittenden
74d0fba899 Change the password expiration message to be more precise. 2007-11-29 16:43:38 -05:00
Rob Crittenden
0b1650e7ad Add ipa-python to maintainer-clean and clean up .pyc files 2007-11-28 12:33:14 -05:00
Rob Crittenden
f42f1f44c8 Enable group inactivation by using the Class of Service plugin. 
This adds 2 new groups: activated and inactivated.

If you, or a group you are a member of, is in inactivated then you are too.

If you, or a group you are a member of, is in the activated group, then you
are too.

In a fight between activated and inactivated, activated wins.

The DNs for doing this matching is case and white space sensitive.

The goal is to never have to actually set nsAccountLock in a user directly
but move them between these groups.

We need to decide where in the CLI this will happen. Right it is split
between ipa-deluser and ipa-usermod. To inactivate groups for now just
add the group to inactivate or active.
 2007-11-20 22:45:29 -05:00
Rob Crittenden
1967aafa39 Implement the password policy UI and finish IPA policy UI 
This includes a default password policy
Custom fields are now read from LDAP. The format is a list of
  dicts with keys: label, field, required.
The LDAP-based configuration now specifies:
    ipaUserSearchFields: uid,givenName,sn,telephoneNumber,ou,title
    ipaGroupSearchFields: cn,description
    ipaSearchTimeLimit: 2
    ipaSearchRecordsLimit: 0
    ipaCustomFields:
    ipaHomesRootDir: /home
    ipaDefaultLoginShell: /bin/sh
    ipaDefaultPrimaryGroup: ipausers
    ipaMaxUsernameLength: 8
    ipaPwdExpAdvNotify: 4
This could use some optimization.
 2007-11-16 12:59:32 -05:00
Rob Crittenden
3e24df161b Replace references to Person and People with User and Users 2007-11-15 13:13:35 -05:00
Rob Crittenden
cb0476f223 Make the group cn an editable field though protected by default. 
Fix some issues with the multi-value to single-value reversion.
 2007-11-14 23:33:49 -05:00
Rob Crittenden
83dd42797e Include multi-value fields on the Add Person page 
Remove multi-valued cn from groups
 2007-11-14 17:50:46 -05:00
Rob Crittenden
3e715a04cf Add an editors group. This is used to generally grant access for users 
to edit other users (the Edit link won't appear otherwise). Additional
delegation is need to grant permission to individual attributes.
Update the failed login page to indicate that it is a permission issue.
Don't allow access to policy at all for non-admins.
By default users can only edit themselves.
 2007-11-14 10:49:03 -05:00
Rob Crittenden
bd78fe0687 Add more fields to the IPA Policy form 2007-11-13 15:36:52 -05:00
Rob Crittenden
83dd26c6e3 Remove non-existent files from Makefile targets 2007-11-13 17:24:00 -05:00
Rob Crittenden
5011f64243 Restrict access to some parts of the UI to those in the admins group 2007-11-13 11:15:07 -05:00
Rob Crittenden
e1ca8c235c Initial support for policy editing 
More work is needed as the values are currently hardcoded and not saved
 2007-11-12 14:19:05 -05:00
Rob Crittenden
e9dfbfa773 Enable multi-value field support for some attributes on the edit pages 
Better error reporting in the GUI
Include a document describing how multi-valued fields work
 2007-11-08 22:12:42 -05:00
Rob Crittenden
50c383aeed Update text to reflect new CSS code (sidebar now on right) 2007-11-06 10:22:47 -05:00
Rob Crittenden
010fb65bfd define Self-Service as editting your own record. 
This has the side-effect of removing the realm from Loggin in as. This
can be changed by using user_name instead of display_name in master.kid.
 2007-11-02 17:41:24 -04:00
Rob Crittenden
9d24003528 Distinguish between active and inactive users on the Find People page. 2007-11-02 11:42:38 -04:00
Rob Crittenden
6a0ca23577 Update the UI look and feel 2007-11-01 16:15:32 -04:00
Kevin McCarthy
859291a706 Add delete user and group to webgui. 
NOTE: this doesn't handle referential integrity.
 2007-10-23 16:46:50 -07:00
Kevin McCarthy
1d746c9fc2 Rename the form fields parameter to be clearer: 
user -> user_fields
group -> group_fields
delegate -> delegate_fields
 2007-10-25 09:18:45 -07:00
Kevin McCarthy
358d279a53 webgui side of custom fields. 2007-10-24 16:04:17 -07:00
Kevin McCarthy
f881e21f7f Add add/edit/show for manager and secretary fields. 2007-10-19 15:19:28 -07:00
Kevin McCarthy
c4bd800b37 Fix HTML errors on empty fields. Move roomnumber to address section. 2007-10-19 09:18:51 -07:00
Karl MacMillan
4427ff78f6 Add exception template. -
Kevin McCarthy
12047b529a Add an exception/error handler to the web gui. 2007-10-18 09:46:13 -07:00
Rob Crittenden
d28b759e00 Fix build issues related to the autotools conversion 2007-10-18 22:03:54 -04:00
Kevin McCarthy
f8a9d2021a Sort users by last name. Make labeleduri a link. 2007-10-17 13:42:45 -07:00
Kevin McCarthy
0b2b499e42 Add print media CSS. Rename delegation edit button to 'update'. 2007-10-17 13:12:43 -07:00
Karl MacMillan
31fb0033ba Merge. -
Kevin McCarthy
2dcab902b8 Remove coffee-spewing color from delete button. Adjust nav-link and size. 2007-10-16 10:14:27 -07:00
Kevin McCarthy
3db0f99977 Adds deletion for delegations. 
The deletion is only triggered via javascript, so they must hit confirm.
 2007-10-16 10:01:30 -07:00
Kevin McCarthy
1592229c3c Fixes to acilist: make use POST, use field labels. 2007-10-15 16:21:10 -07:00
Kevin McCarthy
40930c9b11 Fix list delegations to show field labels. 
Also fix script tags on delegateform.kid.
 2007-10-15 14:17:51 -07:00
Kevin McCarthy
117a78f909 Rename delegatenewform to delegateform. 2007-10-15 13:17:26 -07:00
Karl MacMillan
f8fba3b7dd Autotool ipa-server - patch from William Jon McCann <mccann@jhu.edu>. -
Kevin McCarthy
233915b780 Add basic delegation editing. 2007-10-15 13:07:39 -07:00
Kevin McCarthy
63f7cdf7f7 Adds delegation listing and creation to the GUI. 2007-10-12 15:11:55 -07:00
Kevin McCarthy
2b38769b50 Combine get_user/group by dn/cn into get_entry_by_cn/dn. 
Also a couple double-escaping fixes I missed in the last patch.
 2007-10-09 09:26:16 -07:00
Kevin McCarthy
9987e0e807 Small group fixes: remove index, change to use hidden_fields (like UserFields) 2007-10-08 09:22:03 -07:00
Kevin McCarthy
d5fedb5f97 Split the controllers out into separate user and group controllers. 2007-10-04 17:10:18 -07:00
Kevin McCarthy
6f7c918e59 Fix the autosuggest ordering so faster operations go first. 
Also fix a bug with the initials autosuggest code.
 2007-10-04 14:23:55 -07:00
Kevin McCarthy
99c793e2ad Fixes none values in first/last name to display properly. 2007-10-04 12:20:00 -07:00