IntenseWebs/freeipa
3
0
Fork 0
mirror of https://salsa.debian.org/freeipa-team/freeipa.git synced 2025-02-25 18:55:28 -06:00
Code Issues Packages Projects Releases Wiki Activity
63becae88c
freeipa/ipalib
History
Petr Viktorin 63becae88c Set user addressbook/IPA attribute read ACI to anonymous on upgrades from 3.x 
When upgrading from an "old" IPA, or installing the first "new" replica,
we need to keep allowing anonymous access to many user attributes.

Add an optional 'fixup_function' to the managed permission templates,
and use it to set the bind rule type to 'anonymous' when installing
(or upgrading to) the first "new" master.

This assumes that the anonymous read ACI will be removed in a "new" IPA.

Part of the work for: https://fedorahosted.org/freeipa/ticket/3566

Reviewed-By: Martin Kosek <mkosek@redhat.com>
2014-05-26 12:12:35 +02:00
..
plugins Set user addressbook/IPA attribute read ACI to anonymous on upgrades from 3.x 2014-05-26 12:12:35 +02:00
__init__.py ipalib: Add DateTime parameter 2014-05-05 18:57:29 +03:00
aci.py ipalib.aci: Allow alternate "aci" keyword in ACIs 2014-04-30 22:16:28 +02:00
backend.py Switch client to JSON-RPC 2013-11-26 16:59:59 +01:00
base.py Allow indexing API object types by class 2014-03-25 14:18:12 +01:00
capabilities.py ipalib: Add DateTime parameter 2014-05-05 18:57:29 +03:00
cli.py ipalib.cli: Add filename argument to ipa console 2014-05-22 18:22:57 +02:00
config.py Switch client to JSON-RPC 2013-11-26 16:59:59 +01:00
constants.py ipalib: Add DateTime parameter 2014-05-05 18:57:29 +03:00
crud.py Add optional_create flag 2013-10-08 16:46:20 +02:00
errors.py ipalib.errors: Fix TaskTimeout doctest 2014-04-09 15:24:35 +02:00
frontend.py Allow primary keys to use different type than unicode. 2014-04-18 14:59:20 +02:00
krb_utils.py Pylint cleanup. 2013-01-29 15:39:49 +01:00
messages.py Add client capabilities, enable messages 2013-02-21 16:26:09 +01:00
output.py Allow primary keys to use different type than unicode. 2014-04-18 14:59:20 +02:00
parameters.py ipalib: Add DateTime parameter 2014-05-05 18:57:29 +03:00
pkcs10.py Add function for parsing friendly name from certificate requests. 2014-03-25 16:54:55 +01:00
plugable.py ipalib.plugable: Always set the parser in bootstrap() 2014-03-05 19:57:37 +01:00
request.py Remove deprecated i18n code from ipalib/request and all references to it. 2011-03-01 10:31:36 -05:00
rpc.py ipalib: Add DateTime parameter 2014-05-05 18:57:29 +03:00
session.py Compliant client side session cookie behavior 2012-12-10 12:45:09 -05:00
text.py Add ConcatenatedLazyText object 2013-11-21 10:34:25 +01:00
util.py Implement an IPA Foreman smartproxy server 2014-04-30 21:57:27 +02:00
x509.py Skip cert issuer validation in service and host commands in CA-less install. 2013-07-09 14:22:57 -04:00