IntenseWebs/freeipa
3
0
Fork 0
mirror of https://salsa.debian.org/freeipa-team/freeipa.git synced 2025-02-25 18:55:28 -06:00
Code Issues Packages Projects Releases Wiki Activity
f996c21edb
freeipa/ipalib/install
History
Christian Heimes 24a5d4d06b Ensure that KDC cert has SAN DNS entry 
The dns parameter of request_and_wait_for_cert() must be a string of
hostnames.

* Enforce list/tuple type so that API misuse no longer passes silently.
* Add commonNameToSANDefaultImpl to KDCs_PKINIT_Certs profile
* Explicitly pass hostname for service certs

Fixes: https://pagure.io/freeipa/issue/8685
Signed-off-by: Christian Heimes <cheimes@redhat.com>
Reviewed-By: Rob Crittenden <rcritten@redhat.com>
2021-01-29 13:36:41 -05:00
..
__init__.py install: introduce installer class hierarchy 2016-11-11 12:17:25 +01:00
certmonger.py Ensure that KDC cert has SAN DNS entry 2021-01-29 13:36:41 -05:00
certstore.py Fix ipa-server-upgrade: This entry already exists 2017-08-30 12:47:53 +02:00
dnsforwarders.py Add helpers for resolve1 and nameservers 2020-09-23 16:44:26 +02:00
hostname.py Only warn when specified server IP addresses don't match intf 2017-06-06 18:10:33 +02:00
kinit.py Add absolute_import future imports 2018-04-20 09:43:37 +02:00
service.py Remove replica_file knob from ipalib/install/service.py 2018-09-12 13:11:21 +02:00
sysrestore.py Address legacy pylint issues in sysrestore.py 2020-08-07 16:44:28 -04:00