URL: https://github.com/freeipa/freeipa/pull/534
Author: tiran
Title: #534: Move csrgen templates into ipaclient package
Action: synchronized
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/534/head:pr534
git checkout pr534
Fro
URL: https://github.com/freeipa/freeipa/pull/534
Title: #534: Move csrgen templates into ipaclient package
tiran commented:
"""
In my opinion, a user should never modify a file that managed by a package
manager and not explicitly marked as a config file. Both files in
```/usr/share``` and ```s
URL: https://github.com/freeipa/freeipa/pull/534
Title: #534: Move csrgen templates into ipaclient package
tiran commented:
"""
In my opinion, a user should never modify a file that managed by a package
manager and not explicitly marked as a config file. Both files in
```/usr/share``` and ```s
URL: https://github.com/freeipa/freeipa/pull/534
Title: #534: Move csrgen templates into ipaclient package
LiptonB commented:
"""
Oops, sorry about the breakage. This seems fine to me, although I hadn't really
been thinking of the templates and rules as data files. They're intended to be
possi
URL: https://github.com/freeipa/freeipa/pull/444
Title: #444: Allow nsaccountlock to be searched in user-find commands
abbra commented:
"""
Yes, you can add nsaccountlock attribute retrieval in the `pre_callback` and
process it in the `post_callback`. nsaccountlock is an operational attribute s
URL: https://github.com/freeipa/freeipa/pull/535
Title: #535: add whoami command
abbra commented:
"""
Design page: http://www.freeipa.org/page/V4/Who_Am_I_Command
"""
See the full comment at
https://github.com/freeipa/freeipa/pull/535#issuecomment-283716554
--
Manage your subscription for the
URL: https://github.com/freeipa/freeipa/pull/535
Author: abbra
Title: #535: add whoami command
Action: opened
PR body:
"""
`ipa whoami` command allows to query details about currently
authenticated identity. The command returns following information:
* object class name
* function to call
URL: https://github.com/freeipa/freeipa/pull/534
Author: tiran
Title: #534: Move csrgen templates into ipaclient package
Action: synchronized
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/534/head:pr534
git checkout pr534
Fro
URL: https://github.com/freeipa/freeipa/pull/534
Author: tiran
Title: #534: Move csrgen templates into ipaclient package
Action: synchronized
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/534/head:pr534
git checkout pr534
Fro
URL: https://github.com/freeipa/freeipa/pull/530
Author: tomaskrizek
Title: #530: man: update ipa-cacert-manage
Action: closed
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/530/head:pr530
git checkout pr530
--
Manage your su
URL: https://github.com/freeipa/freeipa/pull/530
Title: #530: man: update ipa-cacert-manage
tomaskrizek commented:
"""
master:
* 223a48b6d9916069971f79ab324ead26fa21c79d man: update ipa-cacert-manage
"""
See the full comment at
https://github.com/freeipa/freeipa/pull/530#issuecomment-28369547
URL: https://github.com/freeipa/freeipa/pull/530
Title: #530: man: update ipa-cacert-manage
Label: +pushed
--
Manage your subscription for the Freeipa-devel mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-devel
Contribute to FreeIPA: http://www.freeipa.org/page/Contribute/Code
URL: https://github.com/freeipa/freeipa/pull/520
Title: #520: Change README to use Markdown
Label: +pushed
--
Manage your subscription for the Freeipa-devel mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-devel
Contribute to FreeIPA: http://www.freeipa.org/page/Contribute/Code
URL: https://github.com/freeipa/freeipa/pull/520
Title: #520: Change README to use Markdown
tomaskrizek commented:
"""
master:
* 5e0ca17ca06ad26f291d4738766e194b3784c5bd Change README to use Markdown
"""
See the full comment at
https://github.com/freeipa/freeipa/pull/520#issuecomment-28369321
URL: https://github.com/freeipa/freeipa/pull/520
Author: pvoborni
Title: #520: Change README to use Markdown
Action: closed
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/520/head:pr520
git checkout pr520
--
Manage your subsc
On 03/02/2017 04:11 PM, Jakub Hrozek wrote:
On Thu, Mar 02, 2017 at 02:47:24PM +0100, Martin Babinsky wrote:
On 03/02/2017 10:25 AM, Jakub Hrozek wrote:
On Thu, Mar 02, 2017 at 08:12:04AM +0100, Martin Babinsky wrote:
On 03/01/2017 05:28 PM, Alexander Bokovoy wrote:
On ke, 01 maalis 2017, Sim
URL: https://github.com/freeipa/freeipa/pull/530
Title: #530: man: update ipa-cacert-manage
Label: +ack
--
Manage your subscription for the Freeipa-devel mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-devel
Contribute to FreeIPA: http://www.freeipa.org/page/Contribute/Code
URL: https://github.com/freeipa/freeipa/pull/534
Author: tiran
Title: #534: Move csrgen templates into ipaclient package
Action: opened
PR body:
"""
csrgen broke packaging of ipaclient for PyPI. All csrgen related
resources are now package data of ipaclient package. Package data is
accessed wi
URL: https://github.com/freeipa/freeipa/pull/534
Title: #534: Move csrgen templates into ipaclient package
tiran commented:
"""
@LiptonB please have a look.
"""
See the full comment at
https://github.com/freeipa/freeipa/pull/534#issuecomment-283680629
--
Manage your subscription for the Freei
On Thu, Mar 02, 2017 at 02:47:24PM +0100, Martin Babinsky wrote:
> On 03/02/2017 10:25 AM, Jakub Hrozek wrote:
> > On Thu, Mar 02, 2017 at 08:12:04AM +0100, Martin Babinsky wrote:
> > > On 03/01/2017 05:28 PM, Alexander Bokovoy wrote:
> > > > On ke, 01 maalis 2017, Simo Sorce wrote:
> > > > > > > M
URL: https://github.com/freeipa/freeipa/pull/530
Author: tomaskrizek
Title: #530: man: update ipa-cacert-manage
Action: synchronized
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/530/head:pr530
git checkout pr530
From 0da5d87
URL: https://github.com/freeipa/freeipa/pull/530
Author: tomaskrizek
Title: #530: man: update ipa-cacert-manage
Action: synchronized
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/530/head:pr530
git checkout pr530
From 42636e6
URL: https://github.com/freeipa/freeipa/pull/504
Author: tomaskrizek
Title: #504: Add SHA256 fingerprints
Action: synchronized
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/504/head:pr504
git checkout pr504
From b61cfc0883bdb
URL: https://github.com/freeipa/freeipa/pull/504
Title: #504: Add SHA256 fingerprints
tomaskrizek commented:
"""
@pvomacka Thanks! Should be fixed now.
"""
See the full comment at
https://github.com/freeipa/freeipa/pull/504#issuecomment-283673360
--
Manage your subscription for the Freeipa-de
URL: https://github.com/freeipa/freeipa/pull/504
Author: tomaskrizek
Title: #504: Add SHA256 fingerprints
Action: synchronized
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/504/head:pr504
git checkout pr504
From 3ee0bda061ec5
URL: https://github.com/freeipa/freeipa/pull/504
Title: #504: Add SHA256 fingerprints
pvomacka commented:
"""
@tomaskrizek so, inline comment is not possible to the line where file was not
changed. So, please remove line 1979: delete command.options.all; . That should
be enough to display fing
URL: https://github.com/freeipa/freeipa/pull/504
Title: #504: Add SHA256 fingerprints
pvomacka commented:
"""
@tomaskrizek actually you did almost all necessary steps. Just please check
inline comments where is described one another change. And in general you do
not have to add anything into j
URL: https://github.com/freeipa/freeipa/pull/520
Title: #520: Change README to use Markdown
stlaz commented:
"""
The build fails no more 😤, ACK.
"""
See the full comment at
https://github.com/freeipa/freeipa/pull/520#issuecomment-283668339
--
Manage your subscription for the Freeipa-devel mai
URL: https://github.com/freeipa/freeipa/pull/520
Title: #520: Change README to use Markdown
Label: +ack
--
Manage your subscription for the Freeipa-devel mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-devel
Contribute to FreeIPA: http://www.freeipa.org/page/Contribute/Code
URL: https://github.com/freeipa/freeipa/pull/532
Title: #532: Fix cookie with Max-Age processing
simo5 commented:
"""
Ok, sorry for some reason I thought this was on the server side, where we do
not care what the cookie looks like, but on the client side we indeed care.
"""
See the full commen
URL: https://github.com/freeipa/freeipa/pull/532
Title: #532: Fix cookie with Max-Age processing
stlaz commented:
"""
If I read the code well, in a well-set-up cookie, during
`store_session_cookie()` when `Cookie.get_named_cookie_from_string()` is
called, the expiration gets normalized which b
URL: https://github.com/freeipa/freeipa/pull/398
Title: #398: Support for Certificate Identity Mapping
Label: +pushed
--
Manage your subscription for the Freeipa-devel mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-devel
Contribute to FreeIPA: http://www.freeipa.org/page/Contribu
URL: https://github.com/freeipa/freeipa/pull/398
Title: #398: Support for Certificate Identity Mapping
dkupka commented:
"""
master:
* 9e24918c89f30a6d7064844dc0dd848bb35140df Support for Certificate Identity
Mapping
"""
See the full comment at
https://github.com/freeipa/freeipa/pull/398#iss
URL: https://github.com/freeipa/freeipa/pull/398
Author: flo-renaud
Title: #398: Support for Certificate Identity Mapping
Action: closed
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/398/head:pr398
git checkout pr398
--
Mana
URL: https://github.com/freeipa/freeipa/pull/476
Title: #476: vault: cache the transport certificate on client
tiran commented:
"""
I didn't see your comment regarding the in-memory cache because github hid the
section after your most recent push.
The in-memory cache doesn't work for Custodia
URL: https://github.com/freeipa/freeipa/pull/504
Title: #504: Add SHA256 fingerprints
pvomacka commented:
"""
@stlaz , @tomaskrizek I will fix that today.
"""
See the full comment at
https://github.com/freeipa/freeipa/pull/504#issuecomment-283662059
--
Manage your subscription for the Freeip
URL: https://github.com/freeipa/freeipa/pull/400
Title: #400: WebUI: Certificate Mapping
pvomacka commented:
"""
In last update I changed just line 33 in certmap.js file.
"""
See the full comment at
https://github.com/freeipa/freeipa/pull/400#issuecomment-283661677
--
Manage your subscription
URL: https://github.com/freeipa/freeipa/pull/400
Author: pvomacka
Title: #400: WebUI: Certificate Mapping
Action: synchronized
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/400/head:pr400
git checkout pr400
From 740a6ed905750
On Thu, 2017-03-02 at 08:10 +0100, Martin Babinsky wrote:
> In this case it would probably be a good idea to think about "forward
> compatibility" and define a new AUX objectclass bringing in
> 'ipaDomainResolutionOrder' instead of extending two separate
> objectclasses. In this way we may the j
URL: https://github.com/freeipa/freeipa/pull/532
Title: #532: Fix cookie with Max-Age processing
simo5 commented:
"""
Do we really care for calculating the expiration time ?
Should we just set timestamp to 0 or even remove the whole thing ?
"""
See the full comment at
https://github.com/freeip
URL: https://github.com/freeipa/freeipa/pull/504
Title: #504: Add SHA256 fingerprints
stlaz commented:
"""
I wanted to test this but nothing is currently shown for either SHA-1 or SHA256
fingerprints in the WebUI so you can either fix it or we'll wait till @pvomacka
has that done.
"""
See the
On 03/02/2017 10:25 AM, Jakub Hrozek wrote:
On Thu, Mar 02, 2017 at 08:12:04AM +0100, Martin Babinsky wrote:
On 03/01/2017 05:28 PM, Alexander Bokovoy wrote:
On ke, 01 maalis 2017, Simo Sorce wrote:
My take is: cut API/UI work, and do the underlying infrastructure work
for the widest set of se
URL: https://github.com/freeipa/freeipa/pull/453
Author: tiran
Title: #453: Cleanup certdb
Action: closed
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/453/head:pr453
git checkout pr453
--
Manage your subscription for the Fr
URL: https://github.com/freeipa/freeipa/pull/453
Title: #453: Cleanup certdb
Label: +pushed
--
Manage your subscription for the Freeipa-devel mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-devel
Contribute to FreeIPA: http://www.freeipa.org/page/Contribute/Code
URL: https://github.com/freeipa/freeipa/pull/453
Title: #453: Cleanup certdb
MartinBasti commented:
"""
master:
* 22d7492c94837342a559c368454c223f566490ac Cleanup certdb
"""
See the full comment at
https://github.com/freeipa/freeipa/pull/453#issuecomment-283656940
--
Manage your subscription
URL: https://github.com/freeipa/freeipa/pull/472
Title: #472: Packaging: Add placeholder packages
Label: +pushed
--
Manage your subscription for the Freeipa-devel mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-devel
Contribute to FreeIPA: http://www.freeipa.org/page/Contribute/Co
URL: https://github.com/freeipa/freeipa/pull/472
Author: tiran
Title: #472: Packaging: Add placeholder packages
Action: closed
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/472/head:pr472
git checkout pr472
--
Manage your su
URL: https://github.com/freeipa/freeipa/pull/472
Title: #472: Packaging: Add placeholder packages
MartinBasti commented:
"""
master:
* 2e784336b0fe99baa47cf3e024f744ed56dc12ec Packaging: Add placeholder packages
* e2b9ea2fd58b98edbb8d6aec97aadeea7cf11dcb Add python-wheel as build requirement
*
URL: https://github.com/freeipa/freeipa/pull/520
Author: pvoborni
Title: #520: Change README to use Markdown
Action: synchronized
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/520/head:pr520
git checkout pr520
From cad3bc0579
URL: https://github.com/freeipa/freeipa/pull/444
Title: #444: Allow nsaccountlock to be searched in user-find commands
redhatrises commented:
"""
Thanks guys. So can this be fixed in `pre_callback` or `post_callback` in
`user_find`, or am I looking elsewhere? (Not super familiar with all of the
URL: https://github.com/freeipa/freeipa/pull/510
Title: #510: Vault: port key wrapping to python-cryptography
Label: +pushed
--
Manage your subscription for the Freeipa-devel mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-devel
Contribute to FreeIPA: http://www.freeipa.org/page/C
URL: https://github.com/freeipa/freeipa/pull/510
Author: tiran
Title: #510: Vault: port key wrapping to python-cryptography
Action: closed
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/510/head:pr510
git checkout pr510
--
Ma
URL: https://github.com/freeipa/freeipa/pull/510
Title: #510: Vault: port key wrapping to python-cryptography
MartinBasti commented:
"""
master:
* ed7a03a1af8b556247b929635e2972be4f2b32e4 Vault: port key wrapping to
python-cryptography
"""
See the full comment at
https://github.com/freeipa/f
URL: https://github.com/freeipa/freeipa/pull/453
Title: #453: Cleanup certdb
Label: +ack
--
Manage your subscription for the Freeipa-devel mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-devel
Contribute to FreeIPA: http://www.freeipa.org/page/Contribute/Code
URL: https://github.com/freeipa/freeipa/pull/502
Title: #502: Make pylint and jsl optional
tomaskrizek commented:
"""
Looks good.
+1 for user-friendly upstream as primary audience. Packagers can turn these
checks on.
"""
See the full comment at
https://github.com/freeipa/freeipa/pull/502#iss
URL: https://github.com/freeipa/freeipa/pull/517
Author: tiran
Title: #517: [WIP] Use Custodia 0.3 features
Action: synchronized
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/517/head:pr517
git checkout pr517
From cbd232eb952
URL: https://github.com/freeipa/freeipa/pull/516
Title: #516: IdM Server: list all Employees with matching Smart Card
flo-renaud commented:
"""
@abbra ,
Thanks for your comment. Running in permissive mode I did not see any AVC
logged in the journal.
@HonzaCholasta
thanks for the tips re. writ
URL: https://github.com/freeipa/freeipa/pull/453
Author: tiran
Title: #453: Cleanup certdb
Action: synchronized
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/453/head:pr453
git checkout pr453
From 88d68db7330e7b51638a1826a146
URL: https://github.com/freeipa/freeipa/pull/453
Title: #453: Cleanup certdb
stlaz commented:
"""
The changes are fine. Please, squash the two commits together so that we can
push it.
"""
See the full comment at
https://github.com/freeipa/freeipa/pull/453#issuecomment-283632762
--
Manage you
URL: https://github.com/freeipa/freeipa/pull/516
Author: flo-renaud
Title: #516: IdM Server: list all Employees with matching Smart Card
Action: synchronized
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/516/head:pr516
git ch
URL: https://github.com/freeipa/freeipa/pull/502
Author: tiran
Title: #502: Make pylint and jsl optional
Action: synchronized
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/502/head:pr502
git checkout pr502
From 17aaddc84ae7d6
URL: https://github.com/freeipa/freeipa/pull/502
Title: #502: Make pylint and jsl optional
tiran commented:
"""
Which audience is our primary concern here?
1. Should default settings be tailored towards downstream packager?
2. Or should defaults settings be user-friendly for upstream and extern
URL: https://github.com/freeipa/freeipa/pull/531
Author: HonzaCholasta
Title: #531: httpinstance: disable system trust module in /etc/httpd/alias
Action: synchronized
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/531/head:pr5
URL: https://github.com/freeipa/freeipa/pull/502
Author: tiran
Title: #502: Make pylint and jsl optional
Action: synchronized
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/502/head:pr502
git checkout pr502
From bf8bd4e36c1da9
URL: https://github.com/freeipa/freeipa/pull/502
Title: #502: Make pylint and jsl optional
tiran commented:
"""
@tomaskrizek autoconf is a bit magic. ```--without-jslint``` is still there.
The line ```AC_ARG_WITH([jslint], ...)``` provides ```--with-jslint``` and
```--without-jslint```. But th
URL: https://github.com/freeipa/freeipa/pull/475
Author: tiran
Title: #475: Add options to run only ipaclient unittests
Action: synchronized
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/475/head:pr475
git checkout pr475
From
URL: https://github.com/freeipa/freeipa/pull/533
Author: pvomacka
Title: #533: WebUI: Change structure of Identity submenu
Action: opened
PR body:
"""
Previously there were 'User Groups', 'Host Groups' and 'Netgroups'
separately, now these three items are grouped into one named 'Groups'
which
URL: https://github.com/freeipa/freeipa/pull/502
Title: #502: Make pylint and jsl optional
tomaskrizek commented:
"""
Since `--without-jslint` was removed, there's actually no way to explicitly
turn off jsl (it will always be autodetected). I tried to set
`--with-jslint=no`, but that didn't do
URL: https://github.com/freeipa/freeipa/pull/510
Title: #510: Vault: port key wrapping to python-cryptography
Label: +ack
--
Manage your subscription for the Freeipa-devel mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-devel
Contribute to FreeIPA: http://www.freeipa.org/page/Cont
URL: https://github.com/freeipa/freeipa/pull/510
Title: #510: Vault: port key wrapping to python-cryptography
stlaz commented:
"""
Tested this and gone through the code, both was fine. ACK.
"""
See the full comment at
https://github.com/freeipa/freeipa/pull/510#issuecomment-283603907
--
Manag
URL: https://github.com/freeipa/freeipa/pull/531
Author: HonzaCholasta
Title: #531: httpinstance: disable system trust module in /etc/httpd/alias
Action: synchronized
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/531/head:pr5
URL: https://github.com/freeipa/freeipa/pull/531
Author: HonzaCholasta
Title: #531: httpinstance: disable system trust module in /etc/httpd/alias
Action: synchronized
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/531/head:pr5
On Thu, Mar 02, 2017 at 08:12:04AM +0100, Martin Babinsky wrote:
> On 03/01/2017 05:28 PM, Alexander Bokovoy wrote:
> > On ke, 01 maalis 2017, Simo Sorce wrote:
> > > > > My take is: cut API/UI work, and do the underlying infrastructure work
> > > > > for the widest set of serves/clients possible i
URL: https://github.com/freeipa/freeipa/pull/526
Author: HonzaCholasta
Title: #526: server install: do not attempt to issue PKINIT cert in CA-less
Action: closed
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/526/head:pr526
gi
URL: https://github.com/freeipa/freeipa/pull/526
Title: #526: server install: do not attempt to issue PKINIT cert in CA-less
Label: +pushed
--
Manage your subscription for the Freeipa-devel mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-devel
Contribute to FreeIPA: http://www.fre
URL: https://github.com/freeipa/freeipa/pull/526
Title: #526: server install: do not attempt to issue PKINIT cert in CA-less
HonzaCholasta commented:
"""
master:
* ba3c201a03cd0b224b43e45245147e48b7291f9f server install: do not attempt to
issue PKINIT cert in CA-less
"""
See the full comment
URL: https://github.com/freeipa/freeipa/pull/526
Title: #526: server install: do not attempt to issue PKINIT cert in CA-less
HonzaCholasta commented:
"""
OK, thanks.
"""
See the full comment at
https://github.com/freeipa/freeipa/pull/526#issuecomment-283596373
--
Manage your subscription for
URL: https://github.com/freeipa/freeipa/pull/531
Author: HonzaCholasta
Title: #531: httpinstance: disable system trust module in /etc/httpd/alias
Action: edited
Changed field: body
Original value:
"""
Currently the NSS database in /etc/httpd/alias is installed with the system
trust module ena
URL: https://github.com/freeipa/freeipa/pull/531
Author: HonzaCholasta
Title: #531: httpinstance: don't load system trust module in /etc/httpd/alias
Action: edited
Changed field: title
Original value:
"""
httpinstance: don't load system trust module in /etc/httpd/alias
"""
--
Manage your su
URL: https://github.com/freeipa/freeipa/pull/531
Author: HonzaCholasta
Title: #531: httpinstance: don't load system trust module in /etc/httpd/alias
Action: synchronized
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/531/head:
URL: https://github.com/freeipa/freeipa/pull/532
Author: stlaz
Title: #532: Fix cookie with Max-Age processing
Action: synchronized
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/532/head:pr532
git checkout pr532
From 3cfc2666
URL: https://github.com/freeipa/freeipa/pull/531
Title: #531: httpinstance: don't load system trust module in /etc/httpd/alias
tiran commented:
"""
```
$ rpm -qf /etc/httpd/alias/libnssckbi.so
mod_nss-1.0.14-1.fc25.x86_64
https://src.fedoraproject.org/cgit/rpms/mod_nss.git/tree/mod_nss.sp
URL: https://github.com/freeipa/freeipa/pull/531
Title: #531: httpinstance: don't load system trust module in /etc/httpd/alias
HonzaCholasta commented:
"""
Sigh, did not notice that.
"""
See the full comment at
https://github.com/freeipa/freeipa/pull/531#issuecomment-283588529
--
Manage your
URL: https://github.com/freeipa/freeipa/pull/531
Title: #531: httpinstance: don't load system trust module in /etc/httpd/alias
tiran commented:
"""
Your solution is just a temporary solution. The file is re-added every time
mod_nss is updated. The mod_nss package needs to be changed, too.
"""
URL: https://github.com/freeipa/freeipa/pull/502
Title: #502: Make pylint and jsl optional
stlaz commented:
"""
There's an ongoing discussion about the acceptance of the patch. Removing the
ACK label until the acceptance is agreed on. Please, @lslebodn or @tomaskrizek,
add the label back once
URL: https://github.com/freeipa/freeipa/pull/502
Title: #502: Make pylint and jsl optional
Label: -ack
--
Manage your subscription for the Freeipa-devel mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-devel
Contribute to FreeIPA: http://www.freeipa.org/page/Contribute/Code
URL: https://github.com/freeipa/freeipa/pull/517
Author: tiran
Title: #517: [WIP] Use Custodia 0.3 features
Action: synchronized
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/517/head:pr517
git checkout pr517
From a6d1269c838
URL: https://github.com/freeipa/freeipa/pull/532
Author: stlaz
Title: #532: Fix cookie with Max-Age processing
Action: opened
PR body:
"""
When cookie has Max-Age set it tries to get expiration by adding
to a timestamp. Without this patch the timestamp would be set to
None and thus the additio
URL: https://github.com/freeipa/freeipa/pull/453
Author: tiran
Title: #453: Cleanup certdb
Action: synchronized
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/453/head:pr453
git checkout pr453
From a4eeabff14a3e67ecc93ddea28f4
URL: https://github.com/freeipa/freeipa/pull/531
Author: HonzaCholasta
Title: #531: httpinstance: don't load system trust module in /etc/httpd/alias
Action: opened
PR body:
"""
Currently the NSS database in /etc/httpd/alias is installed with the system
trust module enabled via a /etc/httpd/ali
On to, 02 maalis 2017, Jan Cholasta wrote:
"No value is set in configuration => use built-in default / some value
is set configuration => use the value" is perfectly user friendly and
pretty much common virtually everywhere I believe, much more so than
"empty value is set in configuration => igno
91 matches
Mail list logo
