IntenseWebs/freeipa
3
0
Fork 0
mirror of https://salsa.debian.org/freeipa-team/freeipa.git synced 2024-12-25 16:31:08 -06:00
Code Issues Packages Projects Releases Wiki Activity
922062eb55
freeipa/install
History
Tomas Krizek 922062eb55 install tools: ldap conn management 
* ipca-ca-install: Use a single ldap connection for the entire
    script. Connecting with ccache in promote is not needed.
* ipa-cacert-manage: Always connect to ldap, since renew and install
    are the only options and renew seems to need ldap connection even
    for self signed certificates.
* ipa-compat-manage: Use one ldap connection for the entire script.
    Replaced try-finally with proper disconnect, code block reindented.
* ipa-csreplica-manage: Properly establish and close the ldap connection.
* ipa-dns-install: Proper connect, disconnect to ldap.
* ipa-kra-install: Proper connect/disconnect for install and uninstall.
* ipa-ldap-update: Proper connect and disconnect to ldap.
* ipa-nis-manage: Proper connect/disconnect for ldap. Try-finally removed
    and code block reindented.
* ipa-replica-manage: Proper connect/disconnect to ldap.
* ipa-replica-prepare: Connect added to validate_options(), where api is
    initialized and disconnected added at the end of run. Reconnect in
    ask_for_options() to validate directory manager password.
* ipa-server-certinstall: Use api.Backend.ldap2 for ldap connections.
* ipa-server-upgrade: Connect to and disconnect from api.Backend.ldap2.

https://fedorahosted.org/freeipa/ticket/6461

Reviewed-By: Martin Basti <mbasti@redhat.com>
Reviewed-By: Jan Cholasta <jcholast@redhat.com>
2016-11-07 11:34:03 +01:00
..
certmonger install: remove dirman_pw from services 2016-11-07 11:34:03 +01:00
conf Use Dogtag REST API for certificate requests 2016-09-07 12:49:28 +02:00
html Added warning to user for Internet Explorer 2016-04-28 14:28:11 +02:00
migration ipaldap: merge IPAdmin to LDAPClient 2016-11-07 11:34:03 +01:00
oddjob Remove unused variables in the code 2016-09-27 13:35:58 +02:00
restart_scripts install: remove dirman_pw from services 2016-11-07 11:34:03 +01:00
share Purge obsolete firefox extension 2016-10-13 20:55:14 +02:00
tools install tools: ldap conn management 2016-11-07 11:34:03 +01:00
ui WebUI: services without canonical name are shown correctly 2016-10-31 16:18:19 +01:00
updates DNS: Support URI resource record type 2016-10-11 16:48:47 +02:00
wsgi Modernize 'except' clauses 2015-08-12 18:17:23 +02:00
Makefile.am Build: move translations from install/po/ to top-level po/ 2016-10-24 13:30:12 +02:00
README.schema Add some basic rules for adding new schema 2010-08-27 13:40:37 -04:00

README.schema 

Ground rules on adding new schema

Brand new schema, particularly when written specifically for IPA, should be
added in share/*.ldif. Any new files need to be explicitly loaded in
ipaserver/install/dsinstance.py. These simply get copied directly into
the new instance schema directory.

Existing schema (e.g. in an LDAP draft) may either be added as a separate
ldif in share or as an update in the updates directory. The advantage of
adding the schema as an update is if 389-ds ever adds the schema then the
installation won't fail due to existing schema failing to load during
bootstrap.

If the new schema requires a new container then this should be added
to install/bootstrap-template.ldif.