freeipa/ipatests/test_install
Christian Heimes a3934a211d Use new LDAPClient constructors
Replace get_ldap_uri() + LDAPClient() with new LDAPClient constructors
like LDAPClient.from_realm().

Some places now use LDAPI with external bind instead of LDAP with simple
bind. Although the FQDN *should* resolve to 127.0.0.1 / [::1], there is
no hard guarantee. The draft
https://tools.ietf.org/html/draft-west-let-localhost-be-localhost-04#section-5.1
specifies that applications must verify that the resulting IP is a
loopback API. LDAPI is always local and a bit more efficient, too.

The simple_bind() method also prevents the caller from sending a
password over an insecure line.

Signed-off-by: Christian Heimes <cheimes@redhat.com>
Reviewed-By: Rob Crittenden <rcritten@redhat.com>
2019-02-05 08:39:13 -05:00
..
__init__.py pytest 3.x compatibility 2017-03-27 18:03:14 +02:00
0_reset.update Make an ipa-tests package 2013-06-17 19:22:50 +02:00
1_add.update Make an ipa-tests package 2013-06-17 19:22:50 +02:00
2_update.update Make an ipa-tests package 2013-06-17 19:22:50 +02:00
3_update.update Make an ipa-tests package 2013-06-17 19:22:50 +02:00
4_update.update Make an ipa-tests package 2013-06-17 19:22:50 +02:00
5_update.update Make an ipa-tests package 2013-06-17 19:22:50 +02:00
6_update.update Make an ipa-tests package 2013-06-17 19:22:50 +02:00
8_badsyntax.update Make an ipa-tests package 2013-06-17 19:22:50 +02:00
9_badsyntax.update Make an ipa-tests package 2013-06-17 19:22:50 +02:00
test_changeconf.py ipa-client-install: Update how comments are added by ipachangeconf 2018-07-05 19:42:43 +02:00
test_install_checks.py Refuse PORT, HOST in /etc/openldap/ldap.conf 2018-05-29 15:30:37 +02:00
test_updates.py Use new LDAPClient constructors 2019-02-05 08:39:13 -05:00