freeipa

IntenseWebs/freeipa

Fork 0

mirror of https://salsa.debian.org/freeipa-team/freeipa.git synced 2025-02-25 18:55:28 -06:00

Commit Graph

Select branches

Hide Pull Requests

bookworm

bullseye

ci-test

master

master-next

salsa-ci

ubuntu

ubuntu-trusty

upstream

upstream-next

wip/debian-platform

debian/4.0.4-1

debian/4.0.4-2

debian/4.0.5-1

debian/4.0.5-2

debian/4.0.5-3

debian/4.0.5-4

debian/4.0.5-5

debian/4.0.5-6

debian/4.1.4-1

debian/4.10.1+dfsg1-1+exp1

debian/4.10.2-1

debian/4.10.2-2

debian/4.10.2-2+exp1

debian/4.11.1-1

debian/4.11.1-2

debian/4.12.2-1

debian/4.12.2-3

debian/4.3.1-1

debian/4.3.2-1

debian/4.3.2-2

debian/4.3.2-3

debian/4.3.2-4

debian/4.3.2-5

debian/4.4.3-1

debian/4.4.3-3

debian/4.4.4-1

debian/4.4.4-2

debian/4.4.4-3

debian/4.4.4-4

debian/4.6.2-1

debian/4.6.2-2

debian/4.6.2-3

debian/4.6.2-4

debian/4.6.3-1

debian/4.7.0-1

debian/4.7.0_pre1+git20180411-1

debian/4.7.0_pre1+git20180411-2

debian/4.7.1-1

debian/4.7.1-3

debian/4.7.2-1

debian/4.7.2-1+exp1

debian/4.7.2-2

debian/4.7.2-3

debian/4.8.1-1

debian/4.8.1-2

debian/4.8.10-1

debian/4.8.10-2

debian/4.8.2-1

debian/4.8.3-1

debian/4.8.5-1

debian/4.8.6-1

debian/4.8.8-1

debian/4.9.11-1

debian/4.9.11-1+exp1

debian/4.9.11-2

debian/4.9.7-1

debian/4.9.7-2

debian/4.9.7-3

debian/4.9.8-1

debian/4.9.8-1+exp1

47920e78c8 ipatests: Update ipa-adtrust-install test Erik Belko 2024-04-11 16:01:19 +01:00
544652aae4 Issue 9591 - Allow get_ruv() to handle incomplete RUV elements Mark Reynolds 2024-05-09 16:01:42 -04:00
f225b3df17 Don't try to validate the HSM arguments on a non-HSM installation Rob Crittenden 2024-05-17 09:43:19 -04:00
b34525c76e Spec file: add support for sss_ssh_knownhosts Francisco Trivino 2024-04-22 13:04:14 +02:00
7d54a6daaf ipa-client-install: add support for sss_ssh_knownhosts Francisco Trivino 2024-02-27 17:28:23 +01:00
6af8577d58 docs: Add a section on SELinux modules to the HSM design Rob Crittenden 2024-04-29 16:39:33 -04:00
c861ce5a16 Add SELinux module checking to hsm_validator Rob Crittenden 2024-04-29 16:35:00 -04:00
6b6c1879c5 Call hsm_validator on KRA installs and validate the HSM password Rob Crittenden 2024-04-29 13:59:00 -04:00
879a937ddd Include the HSM tests in the nightlies Rob Crittenden 2024-04-26 18:16:43 -04:00
bcd8d2d90a Require certmonger 0.79.17+ for required HSM changes Rob Crittenden 2024-04-26 16:22:21 -04:00
ea0bf4020c After an HSM replica install ensure all certs are visible Rob Crittenden 2024-04-26 16:17:15 -04:00
b9ec2fb0a9 KRA: force OAEP for some HSM-based installations Rob Crittenden 2024-03-05 09:39:43 -05:00
31fda79a0e Prompt for token password if not provided in replica/ipa-ca-install Rob Crittenden 2024-02-14 15:23:57 -05:00
c6f2d0212b dogtag-ipa-ca-renew-agent-submit: expect certs to be on HSMs Rob Crittenden 2024-01-30 17:17:21 -05:00
b63103c88a tests: Fix failing test test_testconfig.py with missing token variables Rob Crittenden 2024-01-18 11:44:20 -05:00
1ec875c6fe ipatests: test software HSM installation with server & replica Mohammad Rizwan 2022-12-29 14:55:18 +05:30
f8798b3e16 Add SELinux subpackage for Thales Luna HSM support Rob Crittenden 2023-07-11 17:15:08 -04:00
87ecca0f18 Add SELinux subpackage for nCipher nfast HSM support Rob Crittenden 2023-07-11 15:46:22 -04:00
c6dd21f04e Remove caSigningCert from list of certs to renew Rob Crittenden 2023-03-22 17:27:57 -04:00
31d66bac64 Validate the HSM token library path and name during installation Rob Crittenden 2023-03-22 17:24:13 -04:00
6b894f28b5 After installing a KRA, copy the updated token to other machines Rob Crittenden 2023-03-22 13:16:36 -04:00
36dbc6b025 ipatests: test software HSM installation with server & replica Mohammad Rizwan 2022-12-29 14:55:18 +05:30
06a8791b9b tests: helper to copy files from one host to another Rob Crittenden 2023-01-11 17:40:51 -05:00
b89aa91977 renew_ca_cert: set peer trust on the KRA audit certificate Rob Crittenden 2023-03-15 10:34:15 -04:00
0708f603e2 renew_ca_cert: skip removing non-CA certs, fix nickname Rob Crittenden 2023-01-10 17:12:32 -05:00
d0c489e282 If HSM is configured add the token name to config-show output Rob Crittenden 2022-12-12 12:10:32 -05:00
93622005ba Add token support to the renew_ca_cert certmonger helper Rob Crittenden 2022-12-09 21:44:43 -05:00
7ad3b489f6 Update SELinux policy to allow certmonger to PKI config files Rob Crittenden 2022-12-09 21:42:23 -05:00
a99091adc0 Add attribute ipacahsmconfiguration to the "Read CAs" ACI Rob Crittenden 2022-12-02 10:47:25 -05:00
82c0b19acc Add HSM configuration options to installer scripts Rob Crittenden 2022-11-29 18:09:02 -05:00
d9efa728c5 Add LDAP attribute ipaCaHSMConfiguration to store HSM state Rob Crittenden 2022-11-29 18:08:13 -05:00
f658a264f9 doc: Add token-password-file to HSM design, set new OID Rob Crittenden 2022-11-29 16:38:54 -05:00
e3234708ac Don't move KRA keys when key backup is disabled Rob Crittenden 2022-08-29 15:24:23 -04:00
73d52a6135 Only generate kracert.p12 when not installing with HSM Rob Crittenden 2022-10-17 17:20:51 -04:00
34f28f06db Add token support to installer certificate handling Rob Crittenden 2022-09-30 11:39:14 -04:00
e6078c639c Don't generate a cafile on HSM instalations Rob Crittenden 2022-09-13 16:01:17 -04:00
cba3094c9a Support the certmonger nss-user option Rob Crittenden 2022-09-30 11:17:22 -04:00
bb8dd0bfcd Spec file: depend on nfs-utils or nfsv4-client-utils Florence Blanc-Renaud 2024-05-06 19:57:54 +02:00
9e1e22d46b ipaserver: fix incorrect double negative in exception message Pavel Březina 2024-05-03 12:00:00 +02:00
6c6b9354b5 Replace netifaces with ifaddr Rafael Guterres Jeffman 2024-04-25 13:01:09 -03:00
cce8dc4da8 Issue 9579 - Remove bash_completions_dir for RHEL Mark Reynolds 2024-04-18 09:06:27 -04:00
f9f96ac4a8 Issue 9570 - migrate nsaccountlock Mark Reynolds 2024-04-05 15:40:09 -04:00
f78d25fc97 ipa-crlgen-manage: manage the cert status task execution time Rob Crittenden 2024-04-08 09:46:56 -04:00
dda223668a webui test: Update message for admin disable Florence Blanc-Renaud 2024-04-11 09:16:02 +02:00
e97d2b1343 releasing package freeipa version 4.11.1-2 debian/4.11.1-2 Timo Aaltonen 2024-04-12 14:31:43 +03:00
a2208a257f map-ssh-service.diff: Map sshd service to use ssh.service. (LP: #2061055) Timo Aaltonen 2024-04-12 13:31:51 +03:00
dcb40c7837 use-raw-strings.diff: Import patch from upstream to fix noise when installing. (LP: #2060298) Timo Aaltonen 2024-04-12 13:15:21 +03:00
1d1fec838b releasing package freeipa version 4.11.1-1 debian/4.11.1-1 Timo Aaltonen 2024-04-10 15:59:39 +03:00
97864b64d5 control, rules: Replace hardcoded librpm9 depends. (Closes: #1067570) Timo Aaltonen 2024-04-10 15:31:47 +03:00
d16c34997f internal: fix 'tokensfor' typo and regenerate pot file Alexander Bokovoy 2024-04-05 08:21:04 +03:00
6b0f6ff19e Allow the admin user to be disabled Rob Crittenden 2024-04-04 13:41:20 -04:00
182dca38c2 principal_has_privilege: Check also idoverriseuser (ipaOriginalUid) Thomas Woerner 2024-02-21 13:59:00 +01:00
8084b94c17 Issue 9568 - Update IPA to IPA migration design doc Mark Reynolds 2024-04-04 12:07:18 -04:00
6294b93e14 ipatests: Ignore spacing in OpenSSL validation error message Rob Crittenden 2024-04-03 14:03:44 -04:00
cbe1873591 IPA-to-IPA migration tool (beta) Mark Reynolds 2023-08-31 13:55:54 -04:00
1df2abbd5f ap: Migrate to docker compose V2 Stanislav Levin 2024-04-03 12:51:30 +03:00
fc7c2cb624 xmlrpc tests: Create user with manager option set using user-add Erik Belko 2024-01-18 17:09:45 +01:00
ca6604b58b Use raw strings for Python 3 compatibility in old API client code Alexander Bokovoy 2024-04-03 12:05:20 +03:00
5d3c6b761b Return 2 when certificates are not found during requests Rob Crittenden 2024-03-26 10:50:18 -04:00
a9bb811296 Check for file permissions after the ca/cert-show is complete Rob Crittenden 2024-03-25 14:08:13 -04:00
38d0e74b6d Move ipalib.install.kinit to ipalib Christian Heimes 2024-03-22 10:35:37 +01:00
6cc668ffeb xmlrpc: adapt range plugin test Florence Blanc-Renaud 2024-03-21 16:01:45 +01:00
a57b665be0 idrange: only issue warning to restart services for a local range Alexander Bokovoy 2024-03-21 08:41:07 +02:00
adf95dcf86 ipatests: Fixes for test_ipahealthcheck_ipansschainvalidation testcases. Sudhir Menon 2024-03-20 14:29:46 +05:30
64861a0cf9 idrange-add: add a warning because 389ds restart is required Florence Blanc-Renaud 2024-03-19 13:29:24 +01:00
f9a1d74f5e dcerpc: invalidate forest trust info cache when filtering out realm domains Alexander Bokovoy 2024-03-11 11:48:01 +02:00
557f0a5639 Issue 9547 - Update IPA to IPA migration design doc Mark Reynolds 2024-02-28 10:42:05 -05:00
e431ce0ce7 ipa-pwd-extop: declare operation notes support from 389-ds locally Alexander Bokovoy 2024-03-14 12:19:12 +02:00
23b224d7ad ipa-pwd-extop: add MFA note in case of a successful LDAP bind with OTP Alexander Bokovoy 2024-03-02 09:31:46 +02:00
1d2897e3d7 ipa-pwd-extop: allow enforcing 2FA-only over LDAP bind Alexander Bokovoy 2024-01-30 11:17:27 +02:00
c3d228d4a3 Vault: add additional fallback to RSA-OAEP wrapping algo Rob Crittenden 2024-03-01 15:12:33 -05:00
ca776b6a9c Translated using Weblate (Korean) Weblate Translation Memory 2024-03-03 15:02:26 +00:00
bf5c9892e9 Translated using Weblate (Korean) 김인수 2024-03-03 04:52:38 +00:00
05f1bf9e2c Translated using Weblate (Korean) Weblate Translation Memory 2024-03-01 08:34:02 +00:00
04ac64a4ed Translated using Weblate (Korean) 김인수 2024-03-01 08:07:01 +00:00
d8a4bde2c6 Translated using Weblate (Korean) Weblate Translation Memory 2024-03-01 07:52:07 +00:00
e60072fe89 Translated using Weblate (Korean) 김인수 2024-03-01 07:47:39 +00:00
ee6ff01b46 Translated using Weblate (Korean) Weblate Translation Memory 2024-03-01 08:20:04 +01:00
9ad27c954e Translated using Weblate (Korean) 김인수 2024-03-01 08:20:04 +01:00
558a7de8b7 ipatests: some tests are date-sensitive and fail Feb 29 Florence Blanc-Renaud 2024-02-29 16:01:33 +01:00
f4a1696a3b Translated using Weblate (Korean) Weblate Translation Memory 2024-02-26 08:57:33 +00:00
f2befb4944 Translated using Weblate (Korean) 김인수 2024-02-26 09:22:19 +00:00
7b2ac6a293 Translated using Weblate (Korean) Weblate Translation Memory 2024-02-24 04:55:12 +00:00
99922e9963 Translated using Weblate (Korean) 김인수 2024-02-24 12:42:04 +00:00
86aae371fa Translated using Weblate (Korean) 김인수 2024-02-23 15:37:31 +00:00
78d86ba060 Translated using Weblate (Korean) Weblate Translation Memory 2024-02-23 15:41:06 +00:00
d9afa62814 Translated using Weblate (Korean) 김인수 2024-02-21 14:33:14 +00:00
282b551533 Translated using Weblate (Georgian) Temuri Doghonadze 2024-02-22 13:51:53 +00:00
1ce532d5a8 Translated using Weblate (Korean) 김인수 2024-02-18 06:47:03 +00:00
2877cae09f Translated using Weblate (Korean) 김인수 2024-02-18 06:44:17 +00:00
c6aae2042d Translated using Weblate (Korean) Weblate Translation Memory 2024-02-18 06:45:46 +00:00
da9f2294e6 Translated using Weblate (Korean) 김인수 2024-02-18 00:32:22 +00:00
f4504e1e91 Translated using Weblate (Korean) Weblate Translation Memory 2024-02-17 13:50:10 +00:00
bc3085cd01 Translated using Weblate (Korean) 김인수 2024-02-17 13:27:44 +00:00
049a56d603 Translated using Weblate (Korean) Weblate Translation Memory 2024-02-17 13:49:39 +00:00
f7a56eb35c Translated using Weblate (Korean) 김인수 2024-02-17 12:55:48 +00:00
23d64942e1 Translated using Weblate (Korean) Weblate Translation Memory 2024-02-17 12:50:55 +00:00
20b01b09f2 Translated using Weblate (Korean) Weblate Translation Memory 2024-02-16 13:28:01 +00:00
cd1a36f233 Translated using Weblate (Korean) 김인수 2024-02-16 13:27:48 +00:00
f18db3abd7 Translated using Weblate (Korean) Weblate Translation Memory 2024-02-16 13:27:27 +00:00