Re: [Freeipa-devel] [PATCH 0030] Add OTP sync plugin

On Thu, 2014-01-23 at 17:42 -0500, Nathaniel McCallum wrote: > On Thu, 2014-01-23 at 14:23 -0500, Simo Sorce wrote: > > On Thu, 2014-01-09 at 16:28 -0500, Nathaniel McCallum wrote: > > > This plugin adds an extended operation for synchronizing tokens. This > > > operation is availalbe both with and

Re: [Freeipa-devel] [PATCH 0030] Add OTP sync plugin

On Thu, 2014-01-23 at 14:23 -0500, Simo Sorce wrote: > On Thu, 2014-01-09 at 16:28 -0500, Nathaniel McCallum wrote: > > This plugin adds an extended operation for synchronizing tokens. This > > operation is availalbe both with and without bind. In the latter case, > > the first factor is required.

Re: [Freeipa-devel] [PATCH 0030] Add OTP sync plugin

On Thu, 2014-01-23 at 15:57 -0500, Nathaniel McCallum wrote: > On Thu, 2014-01-23 at 15:46 -0500, Nathaniel McCallum wrote: > > On Thu, 2014-01-23 at 22:12 +0200, Alexander Bokovoy wrote: > > > On Thu, 23 Jan 2014, Nathaniel McCallum wrote: > > > >On Thu, 2014-01-23 at 14:23 -0500, Simo Sorce wrote

Re: [Freeipa-devel] [PATCH 0030] Add OTP sync plugin

On Thu, 23 Jan 2014, Nathaniel McCallum wrote: On Thu, 2014-01-23 at 15:46 -0500, Nathaniel McCallum wrote: On Thu, 2014-01-23 at 22:12 +0200, Alexander Bokovoy wrote: > On Thu, 23 Jan 2014, Nathaniel McCallum wrote: > >On Thu, 2014-01-23 at 14:23 -0500, Simo Sorce wrote: > >> On Thu, 2014-01-09

Re: [Freeipa-devel] [PATCH 0030] Add OTP sync plugin

On Thu, 23 Jan 2014, Nathaniel McCallum wrote: On Thu, 2014-01-23 at 22:12 +0200, Alexander Bokovoy wrote: On Thu, 23 Jan 2014, Nathaniel McCallum wrote: >On Thu, 2014-01-23 at 14:23 -0500, Simo Sorce wrote: >> On Thu, 2014-01-09 at 16:28 -0500, Nathaniel McCallum wrote: >> > This plugin adds an

Re: [Freeipa-devel] [PATCH 0030] Add OTP sync plugin

On Thu, 2014-01-23 at 15:46 -0500, Nathaniel McCallum wrote: > On Thu, 2014-01-23 at 22:12 +0200, Alexander Bokovoy wrote: > > On Thu, 23 Jan 2014, Nathaniel McCallum wrote: > > >On Thu, 2014-01-23 at 14:23 -0500, Simo Sorce wrote: > > >> On Thu, 2014-01-09 at 16:28 -0500, Nathaniel McCallum wrote:

Re: [Freeipa-devel] [PATCH 0030] Add OTP sync plugin

On Thu, 2014-01-23 at 22:12 +0200, Alexander Bokovoy wrote: > On Thu, 23 Jan 2014, Nathaniel McCallum wrote: > >On Thu, 2014-01-23 at 14:23 -0500, Simo Sorce wrote: > >> On Thu, 2014-01-09 at 16:28 -0500, Nathaniel McCallum wrote: > >> > This plugin adds an extended operation for synchronizing toke

Re: [Freeipa-devel] [PATCH 0030] Add OTP sync plugin

On Thu, 23 Jan 2014, Nathaniel McCallum wrote: On Thu, 2014-01-23 at 14:23 -0500, Simo Sorce wrote: On Thu, 2014-01-09 at 16:28 -0500, Nathaniel McCallum wrote: > This plugin adds an extended operation for synchronizing tokens. This > operation is availalbe both with and without bind. In the lat

Re: [Freeipa-devel] [PATCH 0030] Add OTP sync plugin

On Thu, 2014-01-23 at 14:23 -0500, Simo Sorce wrote: > On Thu, 2014-01-09 at 16:28 -0500, Nathaniel McCallum wrote: > > This plugin adds an extended operation for synchronizing tokens. This > > operation is availalbe both with and without bind. In the latter case, > > the first factor is required.

Re: [Freeipa-devel] [PATCH 0030] Add OTP sync plugin

On Thu, 2014-01-09 at 16:28 -0500, Nathaniel McCallum wrote: > This plugin adds an extended operation for synchronizing tokens. This > operation is availalbe both with and without bind. In the latter case, > the first factor is required. This operation can also be performed > on a per-token or per-

Re: [Freeipa-devel] OTP Sync Client

Nathaniel McCallum wrote: On Thu, 2014-01-23 at 16:27 +0100, Jan Cholasta wrote: Hi, On 23.1.2014 16:19, Rob Crittenden wrote: Nathaniel McCallum wrote: On Wed, 2014-01-22 at 15:59 -0500, Nathaniel McCallum wrote: In attempting to write an OTP synchronization client, I've noticed it doesn't

Re: [Freeipa-devel] OTP Sync Client

On 01/23/2014 07:33 PM, Nathaniel McCallum wrote: On Thu, 2014-01-23 at 16:27 +0100, Jan Cholasta wrote: Hi, On 23.1.2014 16:19, Rob Crittenden wrote: Nathaniel McCallum wrote: On Wed, 2014-01-22 at 15:59 -0500, Nathaniel McCallum wrote: In attempting to write an OTP synchronization client,

Re: [Freeipa-devel] OTP Sync Client

On Thu, 2014-01-23 at 16:27 +0100, Jan Cholasta wrote: > Hi, > > On 23.1.2014 16:19, Rob Crittenden wrote: > > Nathaniel McCallum wrote: > >> On Wed, 2014-01-22 at 15:59 -0500, Nathaniel McCallum wrote: > >>> In attempting to write an OTP synchronization client, I've noticed it > >>> doesn't fit i

Re: [Freeipa-devel] [PATCH] 126 CLDAP: generate NetBIOS name like ipa-adtrust-install does

On 01/23/2014 04:08 PM, Alexander Bokovoy wrote: On Thu, 23 Jan 2014, Sumit Bose wrote: On Thu, Jan 23, 2014 at 03:07:05PM +0200, Alexander Bokovoy wrote: On Thu, 23 Jan 2014, Sumit Bose wrote: >Hi, > >here is another one for the CLDAP NetBIOS name issue. ACK but could you please split the pat

Re: [Freeipa-devel] OTP Sync Client

Hi, On 23.1.2014 16:19, Rob Crittenden wrote: Nathaniel McCallum wrote: On Wed, 2014-01-22 at 15:59 -0500, Nathaniel McCallum wrote: In attempting to write an OTP synchronization client, I've noticed it doesn't fit into the framework very well. The job of the client is to perform the synchroni

Re: [Freeipa-devel] OTP Sync Client

Nathaniel McCallum wrote: On Wed, 2014-01-22 at 15:59 -0500, Nathaniel McCallum wrote: In attempting to write an OTP synchronization client, I've noticed it doesn't fit into the framework very well. The job of the client is to perform the synchronization extended operation. The format of the req

Re: [Freeipa-devel] [PATCH] 126 CLDAP: generate NetBIOS name like ipa-adtrust-install does

On Thu, 23 Jan 2014, Sumit Bose wrote: On Thu, Jan 23, 2014 at 03:07:05PM +0200, Alexander Bokovoy wrote: On Thu, 23 Jan 2014, Sumit Bose wrote: >Hi, > >here is another one for the CLDAP NetBIOS name issue. ACK but could you please split the patch into two: - adding make_netbios_name() and usi

Re: [Freeipa-devel] OTP Sync Client

On Wed, 2014-01-22 at 15:59 -0500, Nathaniel McCallum wrote: > In attempting to write an OTP synchronization client, I've noticed it > doesn't fit into the framework very well. The job of the client is to > perform the synchronization extended operation. The format of the > request is this: > >

[Freeipa-devel] [PATCH] 236 Log unhandled exceptions in certificate renewal scripts

Hi, the attached patch fixes . Honza -- Jan Cholasta >From c785032f46ab05635cdf5c49aee97a3504427135 Mon Sep 17 00:00:00 2001 From: Jan Cholasta Date: Thu, 23 Jan 2014 15:33:26 +0100 Subject: [PATCH] Log unhandled exceptions in certificate renewal s

Re: [Freeipa-devel] OTP Sync Client

On Thu, 2014-01-23 at 10:28 +0100, Petr Vobornik wrote: > On 22.1.2014 22:07, Nathaniel McCallum wrote: > > On Wed, 2014-01-22 at 16:03 -0500, Rob Crittenden wrote: > >> Nathaniel McCallum wrote: > >>> In attempting to write an OTP synchronization client, I've noticed it > >>> doesn't fit into the

Re: [Freeipa-devel] [PATCH] 126 CLDAP: generate NetBIOS name like ipa-adtrust-install does

On Thu, Jan 23, 2014 at 03:07:05PM +0200, Alexander Bokovoy wrote: > On Thu, 23 Jan 2014, Sumit Bose wrote: > >Hi, > > > >here is another one for the CLDAP NetBIOS name issue. > > ACK but could you please split the patch into two: > - adding make_netbios_name() and using it > - CMocka test for m

Re: [Freeipa-devel] [PATCHES] 0447-0449 Add support for managed permissions

On Thu, 2014-01-23 at 13:23 +0100, Petr Viktorin wrote: > On 01/23/2014 12:24 PM, Martin Kosek wrote: > > On 01/22/2014 10:27 AM, Petr Viktorin wrote: > >> On 01/08/2014 04:49 PM, Petr Viktorin wrote: > >>> Hello, > >>> This adds "managed" permissions, the framework that will make our > >>> default

Re: [Freeipa-devel] [PATCH] 210 Allow SAN in IPA certificate profile

On 22.1.2014 16:43, Simo Sorce wrote: On Wed, 2014-01-22 at 16:05 +0100, Jan Cholasta wrote: On 22.1.2014 15:34, Simo Sorce wrote: On Wed, 2014-01-22 at 10:40 +0100, Jan Cholasta wrote: On 21.1.2014 17:12, Simo Sorce wrote: Later in the patch you seem to be changing from needing managedby_hos

Re: [Freeipa-devel] [PATCH] 1106 IPA REST smart proxy

On 01/22/2014 08:04 PM, Rob Crittenden wrote: Petr Viktorin wrote: On 01/20/2014 05:21 PM, Rob Crittenden wrote: Petr Viktorin wrote: On 01/17/2014 10:24 PM, Rob Crittenden wrote: Implement an IPA RESTful Foreman-compatible smart proxy. This exposes hosts and hostgroups via an unauthenticated

Re: [Freeipa-devel] [PATCH] 126 CLDAP: generate NetBIOS name like ipa-adtrust-install does

On Thu, 23 Jan 2014, Sumit Bose wrote: Hi, here is another one for the CLDAP NetBIOS name issue. ACK but could you please split the patch into two: - adding make_netbios_name() and using it - CMocka test for make_netbios_name() ? -- / Alexander Bokovoy _

[Freeipa-devel] [PATCHES] 0453-0454 Test fixes

Hello, RHEL 5 runs `clear` from /root/.bash_logout. The tests use a login session without an attached TTY. This makes `clear` complain about missing $TERM and fail the whole shell session. Rather than adding a special fix upstream, cleaning /root/.bash_logout will be a responsibility of whoeve

[Freeipa-devel] [PATCH] 126 CLDAP: generate NetBIOS name like ipa-adtrust-install does

Hi, here is another one for the CLDAP NetBIOS name issue. bye, Sumit From 744507e74055ffd8bf40f6b7d67ff094f975903e Mon Sep 17 00:00:00 2001 From: Sumit Bose Date: Thu, 23 Jan 2014 12:36:38 +0100 Subject: [PATCH] CLDAP: generate NetBIOS name like ipa-adtrust-install does Fixes https://fedorahos

Re: [Freeipa-devel] [PATCHES] 0447-0449 Add support for managed permissions

On 01/23/2014 12:24 PM, Martin Kosek wrote: On 01/22/2014 10:27 AM, Petr Viktorin wrote: On 01/08/2014 04:49 PM, Petr Viktorin wrote: Hello, This adds "managed" permissions, the framework that will make our default permissions merge IPA updates and user changes sanely. There is no updater yet,

[Freeipa-devel] [PATCH 0007] Limit memberOf and refInt DS plugins to main IPA suffix

Hello, this patch solves performance problems with retro change log trimming. It has to go to the same branches as Ana's patch 0079 Enable Retro Changelog and Content Synchronization DS plugins. -- Petr^2 Spacek From dd724a720289b45c82716123fd991621047b6c63 Mon Sep 17 00:00:00 2001 From: Petr

Re: [Freeipa-devel] [PATCHES] 0447-0449 Add support for managed permissions

On 01/22/2014 10:27 AM, Petr Viktorin wrote: > On 01/08/2014 04:49 PM, Petr Viktorin wrote: >> Hello, >> This adds "managed" permissions, the framework that will make our >> default permissions merge IPA updates and user changes sanely. >> >> There is no updater yet, nor does this add any actual ma

Re: [Freeipa-devel] OTP Sync Client

On 22.1.2014 22:07, Nathaniel McCallum wrote: On Wed, 2014-01-22 at 16:03 -0500, Rob Crittenden wrote: Nathaniel McCallum wrote: In attempting to write an OTP synchronization client, I've noticed it doesn't fit into the framework very well. The job of the client is to perform the synchronizatio

Re: [Freeipa-devel] [PATCH] 0335 ipa-replica-install: Move check for existing host before DNS resolution check

On 01/22/2014 08:00 PM, Rob Crittenden wrote: Petr Viktorin wrote: On 01/14/2014 07:59 PM, Rob Crittenden wrote: Petr Viktorin wrote: On 01/13/2014 05:19 PM, Rob Crittenden wrote: Petr Viktorin wrote: See commit message & ticket for details. https://fedorahosted.org/freeipa/ticket/3889 If