mirror of
https://salsa.debian.org/freeipa-team/freeipa.git
synced 2024-12-30 10:47:08 -06:00
74e31cd985
The user details page has been modified to show the password policy and Kerberos ticket policy that apply to the user. The policies are currently displayed as read-only. Ticket #703
550 lines
28 KiB
JSON
550 lines
28 KiB
JSON
{
|
|
"error": null,
|
|
"id": null,
|
|
"result": {
|
|
"count": 4,
|
|
"results": [
|
|
{
|
|
"error": null,
|
|
"messages": {
|
|
"ajax": {
|
|
"401": {
|
|
"message": "Your Kerberos ticket is no longer valid. Please run kinit and then click 'Retry'. If this is your first time running the IPA Web UI <a href='/ipa/config/unauthorized.html'>follow these directions</a> to configure your browser.",
|
|
"title": "Kerberos ticket no longer valid."
|
|
}
|
|
},
|
|
"association": {
|
|
"add": {
|
|
"ipasudorunas": "Add RunAs ${other_entity} into ${entity} ${primary_key}",
|
|
"ipasudorunasgroup": "Add RunAs Groups into ${entity} ${primary_key}",
|
|
"managedby": "Add ${other_entity} Managing ${entity} ${primary_key}",
|
|
"member": "Add ${other_entity} into ${entity} ${primary_key}",
|
|
"memberallowcmd": "Add Allow ${other_entity} into ${entity} ${primary_key}",
|
|
"memberdenycmd": "Add Deny ${other_entity} into ${entity} ${primary_key}",
|
|
"memberof": "Add ${entity} ${primary_key} into ${other_entity}",
|
|
"sourcehost": "Add Source ${other_entity} into ${entity} ${primary_key}"
|
|
},
|
|
"direct_membership": "Direct Membership",
|
|
"indirect_membership": "Indirect Membership",
|
|
"no_entries": "No entries.",
|
|
"paging": "Showing ${start} to ${end} of ${total} entries.",
|
|
"remove": {
|
|
"ipasudorunas": "Remove RunAs ${other_entity} from ${entity} ${primary_key}",
|
|
"ipasudorunasgroup": "Remove RunAs Groups from ${entity} ${primary_key}",
|
|
"managedby": "Remove ${other_entity} Managing ${entity} ${primary_key}",
|
|
"member": "Remove ${other_entity} from ${entity} ${primary_key}",
|
|
"memberallowcmd": "Remove Allow ${other_entity} from ${entity} ${primary_key}",
|
|
"memberdenycmd": "Remove Deny ${other_entity} from ${entity} ${primary_key}",
|
|
"memberof": "Remove ${entity} ${primary_key} from ${other_entity}",
|
|
"sourcehost": "Remove Source ${other_entity} from ${entity} ${primary_key}"
|
|
},
|
|
"show_results": "Show Results"
|
|
},
|
|
"buttons": {
|
|
"add": "Add",
|
|
"add_and_add_another": "Add and Add Another",
|
|
"add_and_close": "Add and Close",
|
|
"add_and_edit": "Add and Edit",
|
|
"add_many": "Add Many",
|
|
"cancel": "Cancel",
|
|
"close": "Close",
|
|
"find": "Find",
|
|
"get": "Get",
|
|
"issue": "Issue",
|
|
"ok": "OK",
|
|
"remove": "Delete",
|
|
"reset": "Reset",
|
|
"restore": "Restore",
|
|
"retry": "Retry",
|
|
"revoke": "Revoke",
|
|
"update": "Update",
|
|
"view": "View"
|
|
},
|
|
"details": {
|
|
"collapse_all": "Collapse All",
|
|
"expand_all": "Expand All",
|
|
"general": "General",
|
|
"identity": "Identity Settings",
|
|
"settings": "${entity} ${primary_key} Settings",
|
|
"to_top": "Back to Top"
|
|
},
|
|
"dialogs": {
|
|
"add_confirmation": "${entity} successfully added",
|
|
"add_title": "Add ${entity}",
|
|
"available": "Available",
|
|
"batch_error_message": "Some operations failed.",
|
|
"batch_error_title": "Operations Error",
|
|
"confirmation": "Confirmation",
|
|
"dirty_message": "This page has unsaved changes. Please save or revert.",
|
|
"dirty_title": "Unsaved Changes",
|
|
"hide_details": "Hide details",
|
|
"prospective": "Prospective",
|
|
"redirection": "Redirection",
|
|
"remove_empty": "Select entries to be removed.",
|
|
"remove_title": "Remove ${entity}",
|
|
"show_details": "Show details",
|
|
"validation_message": "Input form contains invalid or missing values.",
|
|
"validation_title": "Validation error"
|
|
},
|
|
"errors": {
|
|
"error": "Error",
|
|
"http_error": "HTTP Error",
|
|
"internal_error": "Internal Error",
|
|
"ipa_error": "IPA Error",
|
|
"no_response": "No response",
|
|
"unknown_error": "Unknown Error",
|
|
"url": "URL"
|
|
},
|
|
"facet_groups": {
|
|
"managedby": "${primary_key} is managed by:",
|
|
"member": "${primary_key} members:",
|
|
"memberof": "${primary_key} is a member of:"
|
|
},
|
|
"facets": {
|
|
"details": "Settings",
|
|
"search": "Search"
|
|
},
|
|
"false": "False",
|
|
"login": {
|
|
"header": "Logged In As"
|
|
},
|
|
"objects": {
|
|
"aci": {
|
|
"attribute": "Attribute"
|
|
},
|
|
"automountkey": {},
|
|
"automountlocation": {
|
|
"identity": "Automount Location Settings"
|
|
},
|
|
"automountmap": {
|
|
"direct": "Direct",
|
|
"indirect": "Indirect",
|
|
"map_type": "Map Type"
|
|
},
|
|
"cert": {
|
|
"aa_compromise": "AA Compromise",
|
|
"affiliation_changed": "Affiliation Changed",
|
|
"ca_compromise": "CA Compromise",
|
|
"certificate_hold": "Certificate Hold",
|
|
"cessation_of_operation": "Cessation of Operation",
|
|
"common_name": "Common Name",
|
|
"enter_csr": "Enter the Base64-encoded CSR below",
|
|
"expires_on": "Expires On",
|
|
"fingerprints": "Fingerprints",
|
|
"issue_certificate": "Issue New Certificate for ${entity} ${primary_key}",
|
|
"issued_by": "Issued By",
|
|
"issued_on": "Issued On",
|
|
"issued_to": "Issued To",
|
|
"key_compromise": "Key Compromise",
|
|
"md5_fingerprint": "MD5 Fingerprint",
|
|
"missing": "No Valid Certificate",
|
|
"new_certificate": "New Certificate",
|
|
"note": "Note",
|
|
"organization": "Organization",
|
|
"organizational_unit": "Organizational Unit",
|
|
"privilege_withdrawn": "Privilege Withdrawn",
|
|
"reason": "Reason for Revocation",
|
|
"remove_from_crl": "Remove from CRL",
|
|
"restore_certificate": "Restore Certificate for ${entity} ${primary_key}",
|
|
"restore_confirmation": "To confirm your intention to restore this certificate, click the \"Restore\" button.",
|
|
"revoke_certificate": "Revoke Certificate for ${entity} ${primary_key}",
|
|
"revoke_confirmation": "To confirm your intention to revoke this certificate, select a reason from the pull-down list, and click the \"Revoke\" button.",
|
|
"revoked": "Certificate Revoked",
|
|
"serial_number": "Serial Number",
|
|
"sha1_fingerprint": "SHA1 Fingerprint",
|
|
"superseded": "Superseded",
|
|
"unspecified": "Unspecified",
|
|
"valid": "Valid Certificate Present",
|
|
"validity": "Validity",
|
|
"view_certificate": "Certificate for ${entity} ${primary_key}"
|
|
},
|
|
"config": {
|
|
"group": "Group Options",
|
|
"search": "Search Options",
|
|
"user": "User Options"
|
|
},
|
|
"delegation": {},
|
|
"dnsrecord": {
|
|
"data": "Data",
|
|
"deleted_no_data": "DNS record was deleted because it contained no data.",
|
|
"other": "Other Record Types",
|
|
"redirection_dnszone": "You will be redirected to DNS Zone.",
|
|
"standard": "Standard Record Types",
|
|
"title": "Records for DNS Zone",
|
|
"type": "Record Type"
|
|
},
|
|
"dnszone": {
|
|
"identity": "DNS Zone Settings"
|
|
},
|
|
"entitle": {
|
|
"account": "Account",
|
|
"certificate": "Certificate",
|
|
"certificates": "Certificates",
|
|
"consume": "Consume",
|
|
"consume_entitlement": "Consume Entitlement",
|
|
"consumed": "Consumed",
|
|
"download": "Download",
|
|
"download_certificate": "Download Certificate",
|
|
"end": "End",
|
|
"import_button": "Import",
|
|
"import_certificate": "Import Certificate",
|
|
"import_message": "Enter the Base64-encoded entitlement certificate below:",
|
|
"loading": "Loading...",
|
|
"no_certificate": "No Certificate.",
|
|
"product": "Product",
|
|
"register": "Register",
|
|
"registration": "Registration",
|
|
"start": "Start",
|
|
"status": "Status"
|
|
},
|
|
"group": {
|
|
"details": "Group Settings",
|
|
"posix": "Is this a POSIX group?"
|
|
},
|
|
"hbacrule": {
|
|
"active": "Active",
|
|
"any_host": "Any Host",
|
|
"any_service": "Any Service",
|
|
"anyone": "Anyone",
|
|
"host": "Accessing",
|
|
"inactive": "Inactive",
|
|
"ipaenabledflag": "Rule status",
|
|
"service": "Via Service",
|
|
"sourcehost": "From",
|
|
"specified_hosts": "Specified Hosts and Groups",
|
|
"specified_services": "Specified Services and Groups",
|
|
"specified_users": "Specified Users and Groups",
|
|
"user": "Who"
|
|
},
|
|
"hbacsvc": {},
|
|
"hbacsvcgroup": {
|
|
"services": "Services"
|
|
},
|
|
"hbactest": {
|
|
"access_denied": "Access Denied",
|
|
"access_granted": "Access Granted",
|
|
"include_disabled": "Include Disabled",
|
|
"include_enabled": "Include Enabled",
|
|
"label": "HBAC Test",
|
|
"matched": "Matched",
|
|
"new_test": "New Test",
|
|
"rules": "Rules",
|
|
"run_test": "Run Test",
|
|
"specify_external": "Specify external ${entity}",
|
|
"unmatched": "Unmatched"
|
|
},
|
|
"host": {
|
|
"certificate": "Host Certificate",
|
|
"cn": "Host Name",
|
|
"delete_key_unprovision": "Delete Key, Unprovision",
|
|
"details": "Host Settings",
|
|
"enrolled": "Enrolled?",
|
|
"enrollment": "Enrollment",
|
|
"fqdn": "Fully Qualified Host Name",
|
|
"keytab": "Kerberos Key",
|
|
"keytab_missing": "Kerberos Key Not Present",
|
|
"keytab_present": "Kerberos Key Present, Host Provisioned",
|
|
"password": "One-Time-Password",
|
|
"password_missing": "One-Time-Password Not Present",
|
|
"password_present": "One-Time-Password Present",
|
|
"password_reset_button": "Reset OTP",
|
|
"password_reset_title": "Reset One-Time-Password",
|
|
"password_set_button": "Set OTP",
|
|
"password_set_title": "Set One-Time-Password",
|
|
"status": "Status",
|
|
"unprovision": "Unprovision",
|
|
"unprovision_confirmation": "Are you sure you want to unprovision this host?",
|
|
"unprovision_title": "Unprovisioning ${entity}"
|
|
},
|
|
"hostgroup": {
|
|
"identity": "Host Group Settings"
|
|
},
|
|
"krbtpolicy": {
|
|
"identity": "Kerberos Ticket Policy"
|
|
},
|
|
"netgroup": {
|
|
"identity": "Netgroup Settings"
|
|
},
|
|
"permission": {
|
|
"identity": "Identity",
|
|
"invalid_target": "Permission with invalid target specification",
|
|
"rights": "Rights",
|
|
"target": "Target"
|
|
},
|
|
"privilege": {
|
|
"identity": "Privilege Settings"
|
|
},
|
|
"pwpolicy": {
|
|
"identity": "Password Policy"
|
|
},
|
|
"role": {
|
|
"identity": "Role Settings"
|
|
},
|
|
"selfservice": {},
|
|
"service": {
|
|
"certificate": "Service Certificate",
|
|
"delete_key_unprovision": "Delete Key, Unprovision",
|
|
"details": "Service Settings",
|
|
"host": "Host Name",
|
|
"missing": "Kerberos Key Not Present",
|
|
"provisioning": "Provisioning",
|
|
"service": "Service",
|
|
"status": "Status",
|
|
"unprovision": "Unprovision",
|
|
"unprovision_confirmation": "Are you sure you want to unprovision this service?",
|
|
"unprovision_title": "Unprovisioning ${entity}",
|
|
"valid": "Kerberos Key Present, Service Provisioned"
|
|
},
|
|
"sudocmd": {
|
|
"groups": "Groups"
|
|
},
|
|
"sudocmdgroup": {
|
|
"commands": "Commands"
|
|
},
|
|
"sudorule": {
|
|
"active": "Active",
|
|
"allow": "Allow",
|
|
"any_command": "Any Command",
|
|
"any_group": "Any Group",
|
|
"any_host": "Any Host",
|
|
"anyone": "Anyone",
|
|
"command": "Run Commands",
|
|
"deny": "Deny",
|
|
"external": "External",
|
|
"host": "Access this host",
|
|
"inactive": "Inactive",
|
|
"ipaenabledflag": "Rule status",
|
|
"options": "Options",
|
|
"runas": "As Whom",
|
|
"specified_commands": "Specified Commands and Groups",
|
|
"specified_groups": "Specified Groups",
|
|
"specified_hosts": "Specified Hosts and Groups",
|
|
"specified_users": "Specified Users and Groups",
|
|
"user": "Who"
|
|
},
|
|
"user": {
|
|
"account": "Account Settings",
|
|
"account_status": "Account Status",
|
|
"activate": "Activate",
|
|
"activation_confirmation": "Are you sure you want to ${action} the user?<br/>The change will take effect immediately.",
|
|
"activation_link": "Click to ${action}",
|
|
"active": "Active",
|
|
"contact": "Contact Settings",
|
|
"deactivate": "Deactivate",
|
|
"employee": "Employee Information",
|
|
"error_changing_status": "Error changing account status",
|
|
"inactive": "Inactive",
|
|
"mailing": "Mailing Address",
|
|
"misc": "Misc. Information"
|
|
}
|
|
},
|
|
"password": {
|
|
"current_password": "Current Password",
|
|
"current_password_required": "Current password is required",
|
|
"new_password": "New Password",
|
|
"password_change_complete": "Password change complete",
|
|
"password_must_match": "Passwords must match",
|
|
"reset_password": "Reset Password",
|
|
"verify_password": "Verify Password"
|
|
},
|
|
"search": {
|
|
"delete_confirm": "Are you sure you want to delete selected entries?",
|
|
"partial_delete": "Some entries were not deleted",
|
|
"quick_links": "Quick Links",
|
|
"select_all": "Select All",
|
|
"truncated": "Query returned more results than the configured size limit. Displaying the first ${counter} results.",
|
|
"unselect_all": "Unselect All"
|
|
},
|
|
"tabs": {
|
|
"audit": "Audit",
|
|
"automount": "Automount",
|
|
"dns": "DNS",
|
|
"hbac": "Host Based Access Control",
|
|
"identity": "Identity",
|
|
"ipaserver": "IPA Server",
|
|
"policy": "Policy",
|
|
"role": "Role Based Access Control",
|
|
"sudo": "Sudo"
|
|
},
|
|
"true": "True",
|
|
"widget": {
|
|
"next": "Next",
|
|
"page": "Page",
|
|
"prev": "Prev",
|
|
"undo": "undo",
|
|
"undo_all": "undo all",
|
|
"validation": {
|
|
"error": "Text does not match field pattern",
|
|
"integer": "Must be an integer",
|
|
"ip_address": "Not a valid IP address",
|
|
"ip_v4_address": "Not a valid IPv4 address",
|
|
"ip_v6_address": "Not a valid IPv6 address",
|
|
"max_value": "Maximum value is ${value}",
|
|
"min_value": "Minimum value is ${value}",
|
|
"required": "Required field"
|
|
}
|
|
}
|
|
}
|
|
},
|
|
{
|
|
"count": 1,
|
|
"error": null,
|
|
"result": [
|
|
{
|
|
"cn": [
|
|
"Administrator"
|
|
],
|
|
"dn": "uid=admin,cn=users,cn=accounts,dc=example,dc=com",
|
|
"gecos": [
|
|
"Administrator"
|
|
],
|
|
"gidnumber": [
|
|
"719000000"
|
|
],
|
|
"has_keytab": true,
|
|
"has_password": true,
|
|
"homedirectory": [
|
|
"/home/admin"
|
|
],
|
|
"ipauniqueid": [
|
|
"03400b10-ddc8-11e0-9103-525400e135d8"
|
|
],
|
|
"krbextradata": [
|
|
{
|
|
"__base64__": "AAJF6G5Ocm9vdC9hZG1pbkBJRE0uTEFCLkJPUy5SRURIQVQuQ09NAA=="
|
|
},
|
|
{
|
|
"__base64__": "AAgBAA=="
|
|
}
|
|
],
|
|
"krblastpwdchange": [
|
|
"20110913052109Z"
|
|
],
|
|
"krblastsuccessfulauth": [
|
|
"20110913053553Z"
|
|
],
|
|
"krbpasswordexpiration": [
|
|
"20111212052109Z"
|
|
],
|
|
"krbprincipalname": [
|
|
"admin@EXAMPLE.COM"
|
|
],
|
|
"loginshell": [
|
|
"/bin/bash"
|
|
],
|
|
"memberof_group": [
|
|
"admins"
|
|
],
|
|
"nsaccountlock": false,
|
|
"objectclass": [
|
|
"top",
|
|
"person",
|
|
"posixaccount",
|
|
"krbprincipalaux",
|
|
"krbticketpolicyaux",
|
|
"inetuser",
|
|
"ipaobject"
|
|
],
|
|
"sn": [
|
|
"Administrator"
|
|
],
|
|
"uid": [
|
|
"admin"
|
|
],
|
|
"uidnumber": [
|
|
"719000000"
|
|
]
|
|
}
|
|
],
|
|
"summary": "1 user matched",
|
|
"truncated": false
|
|
},
|
|
{
|
|
"count": 72,
|
|
"error": null,
|
|
"result": {
|
|
"basedn": "dc=example,dc=com",
|
|
"bin": "/var/www",
|
|
"ca_agent_install_port": 9443,
|
|
"ca_agent_port": 443,
|
|
"ca_ee_install_port": 9444,
|
|
"ca_ee_port": 443,
|
|
"ca_host": "dev.example.com",
|
|
"ca_install_port": 9180,
|
|
"ca_port": 80,
|
|
"conf": "/etc/ipa/server.conf",
|
|
"conf_default": "/etc/ipa/default.conf",
|
|
"confdir": "/etc/ipa",
|
|
"config_loaded": true,
|
|
"container_accounts": "cn=accounts",
|
|
"container_applications": "cn=applications,cn=configs,cn=policies",
|
|
"container_automember": "cn=automember,cn=etc",
|
|
"container_automount": "cn=automount",
|
|
"container_configs": "cn=configs,cn=policies",
|
|
"container_dns": "cn=dns",
|
|
"container_entitlements": "cn=entitlements,cn=etc",
|
|
"container_group": "cn=groups,cn=accounts",
|
|
"container_hbac": "cn=hbac",
|
|
"container_hbacservice": "cn=hbacservices,cn=hbac",
|
|
"container_hbacservicegroup": "cn=hbacservicegroups,cn=hbac",
|
|
"container_host": "cn=computers,cn=accounts",
|
|
"container_hostgroup": "cn=hostgroups,cn=accounts",
|
|
"container_netgroup": "cn=ng,cn=alt",
|
|
"container_permission": "cn=permissions,cn=pbac",
|
|
"container_policies": "cn=policies",
|
|
"container_policygroups": "cn=policygroups,cn=configs,cn=policies",
|
|
"container_policylinks": "cn=policylinks,cn=configs,cn=policies",
|
|
"container_privilege": "cn=privileges,cn=pbac",
|
|
"container_rolegroup": "cn=roles,cn=accounts",
|
|
"container_roles": "cn=roles,cn=policies",
|
|
"container_service": "cn=services,cn=accounts",
|
|
"container_sudocmd": "cn=sudocmds,cn=sudo",
|
|
"container_sudocmdgroup": "cn=sudocmdgroups,cn=sudo",
|
|
"container_sudorule": "cn=sudorules,cn=sudo",
|
|
"container_user": "cn=users,cn=accounts",
|
|
"container_virtual": "cn=virtual operations,cn=etc",
|
|
"context": "server",
|
|
"debug": false,
|
|
"domain": "example.com",
|
|
"dot_ipa": "/var/www/.ipa",
|
|
"enable_ra": true,
|
|
"fallback": true,
|
|
"home": "/var/www",
|
|
"host": "dev.example.com",
|
|
"in_server": true,
|
|
"in_tree": false,
|
|
"interactive": true,
|
|
"ipalib": "/usr/lib/python2.7/site-packages/ipalib",
|
|
"ldap_uri": "ldapi://%2fvar%2frun%2fslapd-EXAMPLE-COM.socket",
|
|
"log": null,
|
|
"logdir": "/var/log/ipa",
|
|
"mode": "production",
|
|
"mount_ipa": "/ipa/",
|
|
"mount_jsonserver": "json",
|
|
"mount_xmlserver": "xml",
|
|
"prompt_all": false,
|
|
"ra_plugin": "selfsign",
|
|
"realm": "EXAMPLE.COM",
|
|
"rpc_json_uri": "http://localhost:8888/ipa/json",
|
|
"script": "/var/www/mod_wsgi",
|
|
"site_packages": "/usr/lib/python2.7/site-packages",
|
|
"startup_traceback": false,
|
|
"validate_api": false,
|
|
"verbose": 0,
|
|
"wait_for_attr": false,
|
|
"webui_assets_dir": null,
|
|
"webui_prod": true,
|
|
"xmlrpc_uri": "https://dev.example.com/ipa/xml"
|
|
},
|
|
"summary": "72 variables",
|
|
"total": 72
|
|
},
|
|
{
|
|
"error": null,
|
|
"result": true,
|
|
"summary": null,
|
|
"value": ""
|
|
}
|
|
]
|
|
}
|
|
} |