March 2020 - FreeIPA-devel - Fedora Mailing-Lists

[freeipa PR#4383][opened] ipatests: wait for SSSD to become online in backup/restore tests

by flo-renaud

URL: https://github.com/freeipa/freeipa/pull/4383 Author: flo-renaud Title: #4383: ipatests: wait for SSSD to become online in backup/restore tests Action: opened PR body: """ The backup/restore tests are calling 'id admin' after restore to make sure that the user name can be resolved after a restore. The test should wait for SSSD backend to become online before doing any check, otherwise there is a risk that the call to 'id admin' fails. Fixes: https://pagure.io/freeipa/issue/8228 """ To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/4383/head:pr4383 git checkout pr4383

4 years, 2 months

2
1
0 / 0

[freeipa PR#4395][opened] [Backport][ipa-4-6] Prevent adding IPA objects as external members of external groups

by abbra

URL: https://github.com/freeipa/freeipa/pull/4395 Author: abbra Title: #4395: [Backport][ipa-4-6] Prevent adding IPA objects as external members of external groups Action: opened PR body: """ The purpose of external groups in FreeIPA is to be able to reference objects only existing in trusted domains. These members get resolved through SSSD interfaces but there is nothing that prevents SSSD from resolving any IPA user or group if they have security identifiers associated. Enforce a check that a SID returned by SSSD does not belong to IPA domain and raise a validation error if this is the case. This would prevent adding IPA users or groups as external members of an external group. RN: Command 'ipa group-add-member' allowed to specify any user or group RN: for '--external' option. A stricter check is added to verify that RN: a group or user to be added as an external member does not come RN: from IPA domain. Fixes: https://pagure.io/freeipa/issue/8236 Signed-off-by: Alexander Bokovoy <abokovoy(a)redhat.com> Reviewed-By: Florence Blanc-Renaud <flo(a)redhat.com> """ To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/4395/head:pr4395 git checkout pr4395

4 years, 2 months

1
1
0 / 0

[freeipa PR#4393][opened] [Backport][ipa-4-7] Prevent adding IPA objects as external members of external groups

by flo-renaud

URL: https://github.com/freeipa/freeipa/pull/4393 Author: flo-renaud Title: #4393: [Backport][ipa-4-7] Prevent adding IPA objects as external members of external groups Action: opened PR body: """ This PR was opened automatically because PR #4374 was pushed to master and backport to ipa-4-7 is required. """ To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/4393/head:pr4393 git checkout pr4393

4 years, 2 months

2
1
0 / 0

[freeipa PR#4394][opened] [Backport][ipa-4-8] Prevent adding IPA objects as external members of external groups

by flo-renaud

URL: https://github.com/freeipa/freeipa/pull/4394 Author: flo-renaud Title: #4394: [Backport][ipa-4-8] Prevent adding IPA objects as external members of external groups Action: opened PR body: """ This PR was opened automatically because PR #4374 was pushed to master and backport to ipa-4-8 is required. """ To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/4394/head:pr4394 git checkout pr4394

4 years, 2 months

2
1
0 / 0

[freeipa PR#4400][opened] [Backport][ipa-4-8] Update SELinux policy

by tiran

URL: https://github.com/freeipa/freeipa/pull/4400 Author: tiran Title: #4400: [Backport][ipa-4-8] Update SELinux policy Action: opened PR body: """ This PR was opened automatically because PR #4398 was pushed to master and backport to ipa-4-8 is required. """ To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/4400/head:pr4400 git checkout pr4400

4 years, 2 months

2
1
0 / 0

[freeipa PR#4388][opened] [testing_master_latest] Nightly PR

by freeipa-pr-ci

URL: https://github.com/freeipa/freeipa/pull/4388 Author: freeipa-pr-ci Title: #4388: [testing_master_latest] Nightly PR Action: opened PR body: """ None """ To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/4388/head:pr4388 git checkout pr4388

4 years, 2 months

1
1
0 / 0

[freeipa PR#4398][opened] Update SELinux policy

by tiran

URL: https://github.com/freeipa/freeipa/pull/4398 Author: tiran Title: #4398: Update SELinux policy Action: opened PR body: """ ## Move ``ipa_custodia`` policy from upstream into IPA's policy The SELinux policy defines file contexts that are also used by clients, e.g. /var/log/ipa/. Make freeipa-selinux a dependency of freeipa-common. ## Make freeipa-selinux a dependency of freeipa-common ipa-custodia is an internal service for IPA. The upstream SELinux policy has a separate module for ipa_custodia. Fold the current policy from Fedora rawhide into ipa's SELinux policy. Related: https://pagure.io/freeipa/issue/6891 """ To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/4398/head:pr4398 git checkout pr4398

4 years, 2 months

1
1
0 / 0

[freeipa PR#4397][opened] [Backport][ipa-4-8] ipatests: Added testcase to check logrotate is added to ipahealthcheck tool

by flo-renaud

URL: https://github.com/freeipa/freeipa/pull/4397 Author: flo-renaud Title: #4397: [Backport][ipa-4-8] ipatests: Added testcase to check logrotate is added to ipahealthcheck tool Action: opened PR body: """ This PR was opened automatically because PR #3724 was pushed to master and backport to ipa-4-8 is required. """ To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/4397/head:pr4397 git checkout pr4397

4 years, 2 months

1
1
0 / 0

[freeipa PR#3724][opened] ipatests: Added testcase to check /var/log/ipahealthcheck directory contains healthcheck.log file

by menonsudhir

URL: https://github.com/freeipa/freeipa/pull/3724 Author: menonsudhir Title: #3724: ipatests: Added testcase to check /var/log/ipahealthcheck directory contains healthcheck.log file Action: opened PR body: """ ipatests: Added testcase to check /var/log/ipahealthcheck directory contains healthcheck.log file Issue: freeipa/freeipa-healthcheck#35 """ To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/3724/head:pr3724 git checkout pr3724

4 years, 2 months

2
1
0 / 0

[freeipa PR#4380][opened] [testing_master_previous] Nightly PR

by freeipa-pr-ci

URL: https://github.com/freeipa/freeipa/pull/4380 Author: freeipa-pr-ci Title: #4380: [testing_master_previous] Nightly PR Action: opened PR body: """ None """ To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/4380/head:pr4380 git checkout pr4380

4 years, 2 months

1
1
0 / 0

2024

2023

2022

2021

2020

2019

2018

2017

FreeIPA-devel March 2020