freeipa/ipalib/plugins
Petr Viktorin 1df9b5836a Allow modifying permissions with ":" in the name
The ":" character will be reserved for default permissions, so that
users cannot create a permission with a name that will later be
added as a default.

Allow the ":" character modifying/deleting permissions*, but not
when creating them. Also do not allow the new name to contain ":"
when renaming.

(* modify/delete have unrelated restrictions on managed permissions)

Reviewed-By: Martin Kosek <mkosek@redhat.com>
2014-03-25 14:18:12 +01:00
..
__init__.py Change FreeIPA license to GPLv3+ 2010-12-20 17:19:53 -05:00
aci.py Convert remaining frontend code to LDAPEntry API. 2014-01-24 20:38:15 +01:00
automember.py Convert remaining frontend code to LDAPEntry API. 2014-01-24 20:38:15 +01:00
automount.py Convert remaining frontend code to LDAPEntry API. 2014-01-24 20:38:15 +01:00
baseldap.py ipalib.plugins: Expose LDAPObjects' eligibility for permission --type in JSON metadata 2014-02-27 12:54:37 +01:00
batch.py Add the version option to all Commands 2013-02-21 16:26:09 +01:00
cert.py Certificate search max_serial_number problem fixed 2014-02-25 16:01:27 +01:00
config.py Convert remaining frontend code to LDAPEntry API. 2014-01-24 20:38:15 +01:00
delegation.py Update plugin docstrings (topic help) to reflect dropped CSV support 2013-02-22 17:20:35 +01:00
dns.py Add permission_filter_objectclasses for explicit type filters 2014-02-20 13:11:41 +01:00
group.py Add permission_filter_objectclasses for explicit type filters 2014-02-20 13:11:41 +01:00
hbacrule.py Remove sourcehostcategory from the default HBAC rule. 2014-02-06 16:46:24 +01:00
hbacsvc.py ticket 1669 - improve i18n docstring extraction 2011-08-24 23:13:16 -04:00
hbacsvcgroup.py Improve help text for HBAC service groups 2013-04-18 17:29:07 -04:00
hbactest.py Convert remaining frontend code to LDAPEntry API. 2014-01-24 20:38:15 +01:00
host.py Add permission_filter_objectclasses for explicit type filters 2014-02-20 13:11:41 +01:00
hostgroup.py Add permission_filter_objectclasses for explicit type filters 2014-02-20 13:11:41 +01:00
idrange.py Prohibit deletion of active subdomain range 2014-03-13 18:12:13 +01:00
internal.py webui: change permissions UI to v2 2014-03-20 10:02:31 +01:00
kerberos.py Use fully qualified CCACHE names 2013-02-01 08:13:50 +01:00
krbtpolicy.py Convert remaining frontend code to LDAPEntry API. 2014-01-24 20:38:15 +01:00
migration.py Migration does not add users to default group 2014-02-05 16:47:37 +01:00
misc.py ticket 1669 - improve i18n docstring extraction 2011-08-24 23:13:16 -04:00
netgroup.py Add permission_filter_objectclasses for explicit type filters 2014-02-20 13:11:41 +01:00
otptoken.py Fix token secret length RFC compliance 2014-03-05 10:09:16 +01:00
passwd.py Convert remaining frontend code to LDAPEntry API. 2014-01-24 20:38:15 +01:00
permission.py Allow modifying permissions with ":" in the name 2014-03-25 14:18:12 +01:00
ping.py Allow API plugin registration via a decorator 2013-08-14 12:08:27 +02:00
pkinit.py Convert remaining frontend code to LDAPEntry API. 2014-01-24 20:38:15 +01:00
privilege.py Allow anonymous and all permissions 2014-01-07 09:56:41 +01:00
pwpolicy.py Convert remaining frontend code to LDAPEntry API. 2014-01-24 20:38:15 +01:00
radiusproxy.py Add RADIUS proxy support to ipalib CLI 2013-12-03 14:49:10 +01:00
realmdomains.py Convert remaining frontend code to LDAPEntry API. 2014-01-24 20:38:15 +01:00
role.py Only apply validation rules when adding and updating. 2012-02-29 18:00:45 -05:00
rpcclient.py Switch client to JSON-RPC 2013-11-26 16:59:59 +01:00
selfservice.py Update plugin docstrings (topic help) to reflect dropped CSV support 2013-02-22 17:20:35 +01:00
selinuxusermap.py Convert remaining frontend code to LDAPEntry API. 2014-01-24 20:38:15 +01:00
service.py Add permission_filter_objectclasses for explicit type filters 2014-02-20 13:11:41 +01:00
sudocmd.py Convert remaining frontend code to LDAPEntry API. 2014-01-24 20:38:15 +01:00
sudocmdgroup.py Update plugin docstrings (topic help) to reflect dropped CSV support 2013-02-22 17:20:35 +01:00
sudorule.py Convert remaining frontend code to LDAPEntry API. 2014-01-24 20:38:15 +01:00
trust.py trust: do not fetch subdomains in case shared secret was used to set up the trust 2014-03-12 18:16:52 +01:00
user.py Add permission_filter_objectclasses for explicit type filters 2014-02-20 13:11:41 +01:00
virtual.py Internationalization for public errors 2012-09-03 18:16:12 +02:00