IntenseWebs/freeipa
3
0
Fork 0
mirror of https://salsa.debian.org/freeipa-team/freeipa.git synced 2024-12-28 18:01:23 -06:00
Code Issues Packages Projects Releases Wiki Activity
536 Commits 11 Branches 59 Tags 60 MiB
cecbca1a84
Commit Graph

536 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Simo Sorce
cecbca1a84 Separate out ACIs that affect radius 2007-12-12 14:16:52 -05:00
Simo Sorce
87bc5c4d63 Handle add/removing and stopping restarting daemons in update/remove 2007-12-12 13:58:55 -05:00
Karl MacMillan
18992de657 Merge. 0001-01-01 00:00:00 +00:00
Simo Sorce
88c0c7f321 from ipa.ipautil import * --> from ipa import ipautil 2007-12-12 13:15:56 -05:00
Simo Sorce
d76886ff4f - Better access control, make sure not even admins can read out passwords 
- Insure admins can't locked out by mistake by inclusion in disabled groups
- Fix also minor error in krbinstance.py
 2007-12-11 21:56:36 -05:00
Karl MacMillan
5cdff99bdf Add a man page for ipa-getkeytab. 0001-01-01 00:00:00 +00:00
Karl MacMillan
c9160e0233 Fix minor typo in unauthorized page. 0001-01-01 00:00:00 +00:00
Rob Crittenden
6390db3502 Add automatic browser configuration for kerberos SSO using javascript. 
This uses the UniversalPreferencesWrite function to set the browser
preferences to allow negotiation and ticket forwarding in the IPA domain.
A self-signed certificate is generated to sign the javascript.
 2007-12-12 09:36:32 -05:00
Karl MacMillan
1c3849eb57 User provided certs. 0001-01-01 00:00:00 +00:00
Karl MacMillan
8792559f74 Remove radiusinstance from ipa-server-install. 0001-01-01 00:00:00 +00:00
Karl MacMillan
2892c28f56 Improve confirmation. 0001-01-01 00:00:00 +00:00
Karl MacMillan
7561d7c42d Remove radius from main install script and add 
ipa-radius-install.
 0001-01-01 00:00:00 +00:00
Karl MacMillan
380756ace9 Confirm before configuring the client. 0001-01-01 00:00:00 +00:00
Karl MacMillan
148a55811d Return a proper error code from ipa-webgui so that 
the init script can indicate when the service
fails to start.
 0001-01-01 00:00:00 +00:00
Rob Crittenden
23ffab533f Make the old entry option in update_*, check for empty parameters and 
fix some problems reported by pychecker.
 2007-12-11 17:34:15 -05:00
Rob Crittenden
5c217ce31a Change from "Common Name" to "Full Name" 2007-12-11 15:14:29 -05:00
Rob Crittenden
10ac6c3c61 Enable searching for multiple things at once 2007-12-11 15:06:01 -05:00
Simo Sorce
5215b21ea4 merge with upstream 2007-12-11 14:19:10 -05:00
Simo Sorce
4f0b215414 Make sure we don't keep around old keys. 
Fixes problem changing passwords seen only on servers where
re-installations where performed (and old secrets piled up)
 2007-12-11 12:25:58 -05:00
Simo Sorce
01131e2a37 Make sure we don't keep around old keys. 
Fixes problem changing passwords seen only on servers where
re-installations where performed (and old secrets piled up)
 2007-12-11 12:25:58 -05:00
Simo Sorce
75493763f6 iMerge with upstream 2007-12-11 11:00:24 -05:00
Simo Sorce
0614024566 Minor fix 2007-12-11 10:59:07 -05:00
Simo Sorce
3defaaf7ba Make admintools discover the domain using DNS calls to find the LDAP server. 2007-12-11 10:58:39 -05:00
Simo Sorce
463a0462d3 Make admintools discover the domain using DNS calls to find the LDAP server. 2007-12-11 10:58:39 -05:00
Rob Crittenden
ca8e71d938 Move the sort arrow to the left of the column title and don't overlap the text 2007-12-10 21:55:12 -05:00
Simo Sorce
a5617680ba Move dnsclient into ipa-python so that I will be able to use it in ipaconfig 2007-12-10 16:31:21 -05:00
Simo Sorce
c0b809efd5 Move dnsclient into ipa-python so that I will be able to use it in ipaconfig 2007-12-10 16:31:21 -05:00
Rob Crittenden
f169641aae Use title case for field labels 2007-12-10 17:44:04 -05:00
Rob Crittenden
f796e50000 Add simple UI for command-line programs to be able to select when 
multiple entries are returned.
 2007-12-10 16:12:58 -05:00
Rob Crittenden
2675f35fdf Tie the logging module to 'PythonOption IPADebug' in /etc/httpd/conf.d/ipa.conf 2007-12-11 09:56:37 -05:00
Simo Sorce
441e9206b5 We need the OpenSSL Crypto lib for the DES and MD4 functions to generate NT 
and LM hashes.
 2007-12-07 19:59:27 -05:00
Simo Sorce
647063253e Fix kdec.length or we may try to double free() or free() uninitiualized data. 2007-12-07 18:09:49 -05:00
Simo Sorce
0b51e32699 merge from upstream 2007-12-07 17:38:15 -05:00
Simo Sorce
11559e9a69 we *may* require it, it depend on the ditro in F8 cahing daemon configuration has been 
incorporated in the default bind install.
 2007-12-07 17:36:14 -05:00
Rob Crittenden
00489597d8 Rework input validation to more closely match what we require in the UI 2007-12-07 17:07:03 -05:00
Rob Crittenden
5e4a162954 Fix delegation in the UI and add a missing aci that allows writes. 
Make ipa-deldelegation more user-friendly.
 2007-12-07 16:08:12 -05:00
Rob Crittenden
0c0cc370cf Fix spelling 2007-12-10 15:01:30 -05:00
Rob Crittenden
b75d735b7e Add default e-mail domain to the IPA configuration 2007-12-10 11:53:00 -05:00
Rob Crittenden
c95550a164 Remove some debugging statements 2007-12-10 11:54:42 -05:00
Rob Crittenden
059e8f00ef Add principal management templates 2007-12-10 09:58:18 -05:00
Rob Crittenden
40ff6f21db Prompt user before downloading a keytab that this will create a new secret, 
breaking any existing keytabs for that principal.
 2007-12-06 11:56:14 -05:00
Rob Crittenden
592329af18 Use more common names for first and last name labels 2007-12-10 11:55:52 -05:00
Rob Crittenden
b3fa02225a Add back in some CSS that was removed in the big UI update. 
This adds back required field colors and colored error and warning msgs.
 2007-12-05 16:15:52 -05:00
Simo Sorce
25c542870d Fix client installation tool 2007-12-04 09:01:40 -05:00
Rob Crittenden
03fe2a8d6a Increase default max password lifetime from 10 to 90 days 2007-12-03 18:09:14 -05:00
Karl MacMillan
6243410bdd Install principal edit page files. 0001-01-01 00:00:00 +00:00
Karl MacMillan
abdbc50683 Import correct httpinstance.py 0001-01-01 00:00:00 +00:00
Karl MacMillan
4e377ad7e8 Fix message about no spaces in password - spaces work 
fine with ssl setup shell script removed.
 0001-01-01 00:00:00 +00:00
Rob Crittenden
99c676702b The uid_hidden field needs to be retained until after validation succeeds 
otherwise if it ever fails, uid_hidden will be lost which can cause uid
to not be set which cascades into lots of other errors.
 2007-12-06 17:00:38 -05:00
Rob Crittenden
04cccd4426 Improve the error message when an entry is not found. 
We used to return the entire argument string ala:

('dc=freeipa,dc=org', 2, 'uid=foo', ['*'])

This adds a regex to try to print anything after = in the filter.
Not perfect but better.
 2007-12-06 16:48:26 -05:00