IntenseWebs/freeipa
3
0
Fork 0
mirror of https://salsa.debian.org/freeipa-team/freeipa.git synced 2025-02-25 18:55:28 -06:00
Code Issues Packages Projects Releases Wiki Activity
c1d8629b74
freeipa/ipalib
History
Martin Babinsky e6ff83e361 Provide API for management of host, service, and user principal aliases 
New commands (*-{add,remove}-principal [PKEY] [PRINCIPAL ...])
were added to manage principal aliases.

'add' commands will check the following:
* the correct principal type is supplied as an alias
* the principals have correct realm and the realm/alternative suffix (e.g.
  e-mail) do not overlap with those of trusted AD domains

If the entry does not have canonical principal name, the first returned
principal name will be set as one. This is mostly to smoothly operate on
entries created on older servers.

'remove' commands will check that there is at least one principal alias equal
to the canonical name left on the entry.

See also: http://www.freeipa.org/page/V4/Kerberos_principal_aliases

https://fedorahosted.org/freeipa/ticket/1365
https://fedorahosted.org/freeipa/ticket/3961
https://fedorahosted.org/freeipa/ticket/5413

Reviewed-By: David Kupka <dkupka@redhat.com>
Reviewed-By: Jan Cholasta <jcholast@redhat.com>
2016-07-01 09:37:25 +02:00
..
__init__.py ipalib: move server-side plugins to ipaserver 2016-06-03 09:00:34 +02:00
aci.py ipalib.aci: Port to Python 3 2015-10-13 14:16:32 +02:00
backend.py rpc: specify connection options in API config 2016-06-03 09:00:34 +02:00
base.py Modernize use of range() 2015-09-01 11:42:01 +02:00
capabilities.py dns_name_values capability added 2014-06-03 15:55:32 +02:00
certstore.py Modernize 'except' clauses 2015-08-12 18:17:23 +02:00
cli.py plugable: support plugin versioning 2016-06-28 13:30:49 +02:00
config.py env: Add 'server' variable to api.env 2016-06-28 15:03:42 +02:00
constants.py CA replica promotion: add proper CA DNS records 2016-06-28 16:56:35 +02:00
crud.py ipalib, ipaserver: fix incorrect API.register calls in docstrings 2016-05-25 16:06:26 +02:00
dns.py dns: do not rely on custom param fields in record attributes 2016-06-20 16:39:12 +02:00
errors.py cert-request: better error msg when 'add' not supported 2016-06-30 15:42:06 +02:00
frontend.py client: add support for pre-schema servers 2016-07-01 09:40:04 +02:00
krb_utils.py pylint: supress false positive no-member errors 2016-03-02 14:57:36 +01:00
Makefile Package ipapython, ipalib, ipaplatform, ipatests for Python 3 2015-12-17 10:52:57 +01:00
messages.py host/service-show/find shouldn't fail on invalid certificate 2016-06-22 17:43:14 +02:00
output.py dns, passwd: fix outputs of dns_resolve and passwd commands 2016-06-15 14:03:51 +02:00
parameters.py ipalib: introduce Principal parameter 2016-07-01 09:37:25 +02:00
pkcs10.py Remove unused imports 2015-12-23 07:59:22 +01:00
plugable.py plugable: add option to ignore override errors 2016-06-30 16:32:20 +02:00
request.py ipalib: provide per-call command context 2016-03-03 10:06:18 +01:00
rpc.py ipalib: introduce Principal parameter 2016-07-01 09:37:25 +02:00
setup.py.in pylint: fix: multiple-statements 2016-06-21 13:51:28 +02:00
text.py Remove unused imports 2015-12-23 07:59:22 +01:00
util.py Provide API for management of host, service, and user principal aliases 2016-07-01 09:37:25 +02:00
x509.py Remove service and host cert issuer validation 2016-06-06 08:58:01 +02:00