On Fri, Apr 18, 2014 at 06:52:30PM +0200, Sumit Bose wrote:
> On Fri, Apr 18, 2014 at 01:53:30AM -0400, Simo Sorce wrote:
> > On Thu, 2014-04-17 at 23:58 -0400, Dmitri Pal wrote:
> > > > yes, this can already be controlled by the idrange type. But you
> > > have to
> > > > choose either algorithmic
On Fri, Apr 18, 2014 at 01:53:30AM -0400, Simo Sorce wrote:
> On Thu, 2014-04-17 at 23:58 -0400, Dmitri Pal wrote:
> > > yes, this can already be controlled by the idrange type. But you
> > have to
> > > choose either algorithmic or manual mapping you cannot have both in
> > a
> > > given domain. W
Hello,
Add basic support for inline-signing.
Inline-signing is enabled for zones with idnsSecInlineSigning attribute = TRUE.
Limitations:
- Signing configuration is hardcoded in create_zone() as magic constants
- idnsSecInlineSigning attribute cannot be changed at run-time
- DNS updates are not
On Fri, 2014-04-18 at 16:11 +0200, Martin Kosek wrote:
> On 04/18/2014 04:07 PM, Simo Sorce wrote:
> > On Fri, 2014-04-18 at 15:49 +0200, Martin Kosek wrote:
> >> On 04/18/2014 03:43 PM, Simo Sorce wrote:
> >>> On Fri, 2014-04-18 at 13:50 +0200, Petr Viktorin wrote:
> This extends the "Anonymo
On 04/18/2014 04:07 PM, Simo Sorce wrote:
> On Fri, 2014-04-18 at 15:49 +0200, Martin Kosek wrote:
>> On 04/18/2014 03:43 PM, Simo Sorce wrote:
>>> On Fri, 2014-04-18 at 13:50 +0200, Petr Viktorin wrote:
This extends the "Anonymous read access to containers" ACI to cover
cn=etc, as discu
On Fri, 2014-04-18 at 15:49 +0200, Martin Kosek wrote:
> On 04/18/2014 03:43 PM, Simo Sorce wrote:
> > On Fri, 2014-04-18 at 13:50 +0200, Petr Viktorin wrote:
> >> This extends the "Anonymous read access to containers" ACI to cover
> >> cn=etc, as discussed in [0].
> >>
> >> A new objectClass is a
On Thu, 17 Apr 2014 16:21:19 +0200
Martin Kosek wrote:
> On 04/17/2014 04:10 PM, Rob Crittenden wrote:
> > Misnyovszki Adam wrote:
> >> Hi,
> >> this patch modifies ipa-server-install to warn the user, if there
> >> is a lack of entropy, also runs generate-rndc-key.sh before named
> >> restart, t
On 04/18/2014 03:43 PM, Simo Sorce wrote:
> On Fri, 2014-04-18 at 13:50 +0200, Petr Viktorin wrote:
>> This extends the "Anonymous read access to containers" ACI to cover
>> cn=etc, as discussed in [0].
>>
>> A new objectClass is added so we can exclude virtual ops with
>> targetfilter: ipaVirtua
On Fri, 2014-04-18 at 13:50 +0200, Petr Viktorin wrote:
> This extends the "Anonymous read access to containers" ACI to cover
> cn=etc, as discussed in [0].
>
> A new objectClass is added so we can exclude virtual ops with
> targetfilter: ipaVirtualOperation (2.16.840.1.113730.3.8.12.23).
>
>
On Fri, 2014-04-18 at 13:39 +0200, Sumit Bose wrote:
> Hi Simo,
>
> Thank you for the comments. So it looks like supporting legacy setups
> where a single user has different POSIX IDs on different servers is a
> use case we want to support. It's fine by me, nevertheless I think it is
> bad admin p
On 04/18/2014 01:55 PM, Petr Viktorin wrote:
> On 04/17/2014 10:12 PM, Alexander Bokovoy wrote:
>> On Thu, 17 Apr 2014, Simo Sorce wrote:
>>> On Thu, 2014-04-17 at 20:30 +0200, Martin Kosek wrote:
On 04/17/2014 07:11 PM, Petr Viktorin wrote:
> Hello,
> While working on the trust perm
On 04/18/2014 01:50 PM, Jan Cholasta wrote:
On 18.4.2014 12:43, Petr Viktorin wrote:
On 04/18/2014 10:57 AM, Jan Cholasta wrote:
On 17.4.2014 16:58, Petr Viktorin wrote:
On 04/17/2014 02:33 PM, Tomas Babej wrote:
ACK for 256 - 259.
On 04/01/2014 10:45 AM, Jan Cholasta wrote:
Hi,
while work
Hi,
$SUBJ tells everything.
Thanks
Adam>From 38ecbfc95dde8f2a968165e1db42922c9a8b8fa1 Mon Sep 17 00:00:00 2001
From: Adam Misnyovszki
Date: Fri, 11 Apr 2014 19:31:19 +0200
Subject: [PATCH] webui doc: typo fixes in guides
---
install/ui/doc/guides.json | 4 ++--
install/ui/d
On 17.4.2014 20:00, Petr Spacek wrote:
Hello,
This patch set attempts to move ldap_parse_master_zoneentry() a little bit
closer to sane code.
It is preparation for
https://fedorahosted.org/bind-dyndb-ldap/ticket/56
bind-dyndb-ldap-pspacek-0242-2-Refactor-master-zone-configuration.patch fixes
On 04/17/2014 10:12 PM, Alexander Bokovoy wrote:
On Thu, 17 Apr 2014, Simo Sorce wrote:
On Thu, 2014-04-17 at 20:30 +0200, Martin Kosek wrote:
On 04/17/2014 07:11 PM, Petr Viktorin wrote:
> Hello,
> While working on the trust permissions I found a typo in the
> 'ipanttrustauthoutgoing' attribut
This extends the "Anonymous read access to containers" ACI to cover
cn=etc, as discussed in [0].
A new objectClass is added so we can exclude virtual ops with
targetfilter: ipaVirtualOperation (2.16.840.1.113730.3.8.12.23).
[0] http://www.redhat.com/archives/freeipa-devel/2014-April/msg00319
On 18.4.2014 12:43, Petr Viktorin wrote:
On 04/18/2014 10:57 AM, Jan Cholasta wrote:
On 17.4.2014 16:58, Petr Viktorin wrote:
On 04/17/2014 02:33 PM, Tomas Babej wrote:
ACK for 256 - 259.
On 04/01/2014 10:45 AM, Jan Cholasta wrote:
Hi,
while working with Martin Bašti on issues in his dns pl
On 04/18/2014 01:40 PM, Petr Viktorin wrote:
> On 04/18/2014 01:29 PM, Martin Kosek wrote:
>> On 04/18/2014 10:52 AM, Petr Viktorin wrote:
>>> On 04/18/2014 10:33 AM, Martin Kosek wrote:
FYI - I saw numerous questions about "ipa" tool backward compatibility (the
most recent is https://bug
On 04/18/2014 01:29 PM, Martin Kosek wrote:
On 04/18/2014 10:52 AM, Petr Viktorin wrote:
On 04/18/2014 10:33 AM, Martin Kosek wrote:
FYI - I saw numerous questions about "ipa" tool backward compatibility (the
most recent is https://bugzilla.redhat.com/show_bug.cgi?id=1089015), so I
created a se
On Thu, Apr 17, 2014 at 11:50:57AM -0400, Simo Sorce wrote:
> On Thu, 2014-04-17 at 17:20 +0200, Sumit Bose wrote:
> > On Thu, Apr 17, 2014 at 01:25:08PM +0300, Alexander Bokovoy wrote:
> > > On Thu, 17 Apr 2014, Sumit Bose wrote:
> > > >On Wed, Apr 16, 2014 at 09:02:00PM -0400, Dmitri Pal wrote:
>
On 04/18/2014 10:52 AM, Petr Viktorin wrote:
> On 04/18/2014 10:33 AM, Martin Kosek wrote:
>> FYI - I saw numerous questions about "ipa" tool backward compatibility (the
>> most recent is https://bugzilla.redhat.com/show_bug.cgi?id=1089015), so I
>> created a section about it:
>>
>> http://www.free
On 04/17/2014 04:31 PM, Petr Viktorin wrote:
On 04/17/2014 12:22 PM, Tomas Babej wrote:
On 04/09/2014 01:33 PM, Petr Viktorin wrote:
On 04/09/2014 12:07 PM, Tomas Babej wrote:
Hi,
the following batch deals with the following:
* cleans up apache's semaphores prior to installing IPA (CA instal
On 04/18/2014 10:57 AM, Jan Cholasta wrote:
On 17.4.2014 16:58, Petr Viktorin wrote:
On 04/17/2014 02:33 PM, Tomas Babej wrote:
ACK for 256 - 259.
On 04/01/2014 10:45 AM, Jan Cholasta wrote:
Hi,
while working with Martin Bašti on issues in his dns plugin patches we
ran into several limitatio
On 04/18/2014 10:33 AM, Martin Kosek wrote:
FYI - I saw numerous questions about "ipa" tool backward compatibility (the
most recent is https://bugzilla.redhat.com/show_bug.cgi?id=1089015), so I
created a section about it:
http://www.freeipa.org/page/Client#Compatibility
and added it to FAQ.
On 04/09/2014 11:29 PM, Rob Crittenden wrote:
Rob Crittenden wrote:
Petr Viktorin wrote:
On 03/14/2014 07:58 PM, Rob Crittenden wrote:
Petr Viktorin wrote:
On 03/12/2014 07:48 PM, Rob Crittenden wrote:
[...]
Here are a couple more enhancements I'm considering, this seems
simpler
than inter
Hi,
this patch fixes select_all checkbox issue, after any bulk modify or
delete operation, the checkbox is deselected.
https://fedorahosted.org/freeipa/ticket/4245
Thanks
Adam>From 7f5d332c6a5192cba668f5006fb07d30872736fe Mon Sep 17 00:00:00 2001
From: Adam Misnyovszki
Date: Thu, 17 Apr 2014 16:5
FYI - I saw numerous questions about "ipa" tool backward compatibility (the
most recent is https://bugzilla.redhat.com/show_bug.cgi?id=1089015), so I
created a section about it:
http://www.freeipa.org/page/Client#Compatibility
and added it to FAQ.
--
Martin Kosek
Supervisor, Software Engineeri
27 matches
Mail list logo
