IntenseWebs/freeipa
3
0
Fork 0
mirror of https://salsa.debian.org/freeipa-team/freeipa.git synced 2025-02-25 18:55:28 -06:00
Code Issues Packages Projects Releases Wiki Activity
Files
78ad1cfe4f8f2f9c51acbe8044a652e49ebaf1d7
freeipa/ipapython
History
Florence Blanc-Renaud 19138c5ba3 Fix ca less IPA install on fips mode 
When ipa-server-install is run in fips mode and ca-less, the installer
fails when the keys are provided with --{http|dirsrv|pkinit}-cert-file
in a separate key file.

The installer transforms the key into PKCS#8 format using
openssl pkcs8 -topk8
but this command fails on a fips-enabled server, unless the options
-v2 aes256 -v2prf hmacWithSHA256
are also provided.

Fixes:
https://pagure.io/freeipa/issue/7280

Reviewed-By: Christian Heimes <cheimes@redhat.com>
2017-11-27 17:51:03 +01:00
..
install
Warning the user when using a loopback IP as forwarder
2017-11-09 09:24:03 -02:00
__init__.py
Rename ipa-python directory to ipapython so it is a real python library
2009-02-09 14:35:15 -05:00
admintool.py
logging: do not log into the root logger
2017-07-14 15:55:59 +02:00
certdb.py
Fix ca less IPA install on fips mode
2017-11-27 17:51:03 +01:00
config.py
Use namespace-aware meta importer for ipaplatform
2017-11-15 14:17:24 +01:00
cookie.py
logging: remove object-specific loggers
2017-07-14 15:55:59 +02:00
dn.py
ca-add: validate Subject DN name attributes
2017-06-01 09:28:36 +02:00
dnsutil.py
logging: do not log into the root logger
2017-07-14 15:55:59 +02:00
dogtag.py
logging: do not log into the root logger
2017-07-14 15:55:59 +02:00
errors.py
Replace StandardError with Exception
2015-09-30 10:51:36 +02:00
graph.py
ipapython/graph.py redundant variable fix
2017-07-14 09:16:13 +02:00
ipa_log_manager.py
logging: make sure logging level is set to proper value
2017-07-26 15:57:56 +02:00
ipaldap.py
pylint: disable __hash__ for some classes
2017-09-08 15:42:07 +02:00
ipautil.py
Backup ipa-custodia conf and keys
2017-11-13 18:10:54 +01:00
ipavalidate.py
Change FreeIPA license to GPLv3+
2010-12-20 17:19:53 -05:00
kerberos.py
kerberos: fix sorting Principal objects
2017-08-17 09:56:01 +02:00
kernel_keyring.py
Fix session cookies
2016-07-22 16:30:32 +02:00
Makefile.am
ipapython: fix DEFAULT_PLUGINS in version.py
2017-03-09 18:39:48 +01:00
nsslib.py
Remove ipapython.nsslib as it is not used anymore
2017-03-01 09:43:41 +00:00
README
Replace DNS client based on acutil with python-dns
2012-05-24 13:55:56 +02:00
session_storage.py
session_storage: Correctly handle string/byte types
2017-06-09 16:59:53 +02:00
setup.cfg
Port all setup.py to setuptools
2016-10-20 18:43:37 +02:00
setup.py
Use namespace-aware meta importer for ipaplatform
2017-11-15 14:17:24 +01:00
ssh.py
py3: fingerprint_hex_sha256: fix encoding/decoding
2017-01-31 18:33:27 +01:00
version.py.in
ipapython: fix DEFAULT_PLUGINS in version.py
2017-03-09 18:39:48 +01:00

README 

This is a set of libraries common to IPA clients and servers though mostly
geared currently towards command-line tools.

A brief overview:

config.py - identify the IPA server domain and realm. It uses python-dns to
            try to detect this information first and will fall back to
            /etc/ipa/default.conf if that fails.

ipautil.py - helper functions

entity.py - entity is the main data type. User and Group extend this class
            (but don't add anything currently).

ipavalidate.py - basic data validation routines