This is actually an old patch that got lost in the depths of freeipa-devel.
There was just one issue with it, that it always assumed that the --all
parameter is present (because it is required in the baseclass). I fixed it and
now use the fail-safe: options.get('all', False)
The Kerberos Tick
Rob Crittenden wrote:
Pavel Zuna wrote:
Alright, here's my first shot at the Kerberos Ticket Policy management
plugin.
It is also a "new type" of plugin. What I mean by that is that it
takes an optional primary key (username) as its first argument. If
used, policy for a specific user is bein
Add support for starting/stopping the CA to ipactl
rob
freeipa-346-ipactl.patch
Description: application/mbox
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel
Jason Gerard DeRose wrote:
On Tue, 2010-01-05 at 14:10 +0100, Pavel Zuna wrote:
The backend.Connectible base class was designed, so that only one instance of
each subclass is used at a time. Connectible generates a Connection object for
each thread and stores it in thread-local storage (context
Rob Crittenden wrote:
Allow the priority to be updated and fix the description of priority
ordering. Lower wins, not higher.
I also had to add the option to not normalize to a few more functions in
ldap2. I have to craft a very specifically-formatted DN for it to be
understood by the krb5 ser
Remove one more hardcoded reference to the pki-ca service and use
self.service_name instead.
rob
freeipa-347-ca.patch
Description: application/mbox
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeip
Pavel Zuna wrote:
This is actually an old patch that got lost in the depths of freeipa-devel.
There was just one issue with it, that it always assumed that the --all
parameter is present (because it is required in the baseclass). I fixed
it and now use the fail-safe: options.get('all', False)
Pavel Zuna wrote:
Rob Crittenden wrote:
Remove one more hardcoded reference to the pki-ca service and use
self.service_name instead.
rob
ack.
Pavel
pushed to master
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/
Rob Crittenden wrote:
Add support for starting/stopping the CA to ipactl
rob
ack.
Pavel
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel
Rob Crittenden wrote:
Remove one more hardcoded reference to the pki-ca service and use
self.service_name instead.
rob
ack.
Pavel
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel
Pavel Zuna wrote:
Rob Crittenden wrote:
Add support for starting/stopping the CA to ipactl
rob
ack.
Pavel
pushed to master
___
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel
I'm not sure why the difference, but the uidnumber, gidnumber, etc. are
being returned as `unicode` instead of `str` under Fedora12. Returning
as `unicode` is correct, but this patch allows the test to still work
under Fedora11 for the time being.
>From dafbfc22cccff32ff847a2e2eced09ac8c881378 Mo
Pavel Zuna wrote:
Jason Gerard DeRose wrote:
On Tue, 2010-01-05 at 14:10 +0100, Pavel Zuna wrote:
The backend.Connectible base class was designed, so that only one
instance of each subclass is used at a time. Connectible generates a
Connection object for each thread and stores it in thread-loc
On Tue, 2010-01-05 at 15:01 +0100, Pavel Zuna wrote:
> ldap2._generate_modlist now uses more sophisticated means to decide when to
> use
> MOD_ADD+MOD_DELETE instead of MOD_REPLACE. Before it did MOD_REPLACE only on
> attributes explicitly specified in ldap2._FORCE_REPLACE_ON_UPDATE_ATTRS. Now
14 matches
Mail list logo
