IntenseWebs/freeipa
3
0
Fork 0
mirror of https://salsa.debian.org/freeipa-team/freeipa.git synced 2024-12-26 17:01:14 -06:00
Code Issues Packages Projects Releases Wiki Activity
8700101d98
freeipa/ipaserver/install/server
History
Florence Blanc-Renaud a94ba732ab Fix ipa-replica-install when key not protected by PIN 
When ipa-replica-install is called in a CA-less environment, the certs,
keys and pins need to be provided with --{http|dirsrv|pkinit}-cert-file and
--{http|dirsrv|pkinit}-pin. If the pin is not provided in the CLI options,
and in interactive mode, the installer prompts for the PIN.
The issue happens when the keys are not protected by any PIN, the installer
does not accept an empty string and keeps on asking for a PIN.

The fix makes sure that the installer accepts an empty PIN. A similar fix
was done for ipa-server-install in
https://pagure.io/freeipa/c/4ee426a68ec60370eee6f5aec917ecce444840c7

Fixes:
https://pagure.io/freeipa/issue/7274

Reviewed-By: Christian Heimes <cheimes@redhat.com>
2017-11-23 13:29:54 +01:00
..
__init__.py Use os.path.isfile() and isdir() 2017-10-20 12:27:19 +02:00
install.py Prevent installation with single label domains 2017-11-09 11:32:31 +01:00
replicainstall.py Fix ipa-replica-install when key not protected by PIN 2017-11-23 13:29:54 +01:00
upgrade.py Use os.path.isfile() and isdir() 2017-10-20 12:27:19 +02:00