February 2021 - FreeIPA-devel - Fedora Mailing-Lists

[freeipa PR#5391][opened] Translations update from Weblate

by weblate

URL: https://github.com/freeipa/freeipa/pull/5391 Author: weblate Title: #5391: Translations update from Weblate Action: opened PR body: """ Translations update from [Weblate](https://translate.fedoraproject.org/projects/freeipa/ipa-4-8/) for freeipa/ipa-4-8. Current translation status: ![Weblate translation status](https://translate.fedoraproject.org/widgets/freeipa/-/ipa-4-8/hor... """ To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/5391/head:pr5391 git checkout pr5391

2 years, 2 months

2
1
0 / 0

[freeipa PR#4909][opened] Add unauthenticated nsupdate

by fcami

URL: https://github.com/freeipa/freeipa/pull/4909 Author: fcami Title: #4909: Add unauthenticated nsupdate Action: opened PR body: """ ipa-client-install: update sssd.conf if nsupdate requires -g If dynamic DNS updates are selected, sssd will use GSS-TSIG by default for nsupdate. When ipa-client-install notices that plain nsupdate is required, switch sssd to use no authentication for dynamic updates too. Fixes: https://pagure.io/freeipa/issue/8402 + ipa-client-install: invoke nsupdate twice (GSS-TSIG, plain) ipa-client-install invokes nsupdate with GSS-TSIG at client enrollment time. If that fails, no retry is done. Change that behavior to try again without GSS-TSIG. Fixes: https://pagure.io/freeipa/issue/8402 #### This is purely WIP: - it needs a proper test - there are more nsupdate calls that should be adapted. """ To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/4909/head:pr4909 git checkout pr4909

2 years, 3 months

2
1
0 / 0

[freeipa PR#5325][opened] LDAP autobind authenticateAsDN for BIND named

by tiran

URL: https://github.com/freeipa/freeipa/pull/5325 Author: tiran Title: #5325: LDAP autobind authenticateAsDN for BIND named Action: opened PR body: """ Use new nsslapd-ldapiautoauthdnattr feature to switch BIND named from GSSAPI bind to EXTERNAL LDAPI bind. Requires 389-DS build https://copr.fedorainfracloud.org/coprs/build/1811023 - [ ] Requires new build of 389-DS - [ ] Add new OIDs to FreeIPA's OID registry Fixes: https://pagure.io/freeipa/issue/8544 See: https://github.com/389ds/389-ds-base/issues/4381 Signed-off-by: Christian Heimes <cheimes(a)redhat.com> """ To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/5325/head:pr5325 git checkout pr5325

2 years, 3 months

2
1
0 / 0

[freeipa PR#5504][opened] Test on Fedora 33

by tiran

URL: https://github.com/freeipa/freeipa/pull/5504 Author: tiran Title: #5504: Test on Fedora 33 Action: opened PR body: """ 389-DS on Fedora 32 does not have new DS feature. Update to temmplate 0.0.5 with updated DS. Signed-off-by: Christian Heimes <cheimes(a)redhat.com> """ To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/5504/head:pr5504 git checkout pr5504

2 years, 4 months

1
1
0 / 0

[freeipa PR#5557][opened] ipatests: Test if ACME renews the issued cert with cerbot

by mrizwan93

URL: https://github.com/freeipa/freeipa/pull/5557 Author: mrizwan93 Title: #5557: ipatests: Test if ACME renews the issued cert with cerbot Action: opened PR body: """ This test is to check if ACME certificate renews upon reaching expiry related: https://pagure.io/freeipa/issue/4751 Signed-off-by: Mohammad Rizwan <myusuf(a)redhat.com> """ To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/5557/head:pr5557 git checkout pr5557

2 years, 5 months

2
1
0 / 0

[freeipa PR#5566][opened] WebUI: test_user_caless: test if user is enabled

by miskopo

URL: https://github.com/freeipa/freeipa/pull/5566 Author: miskopo Title: #5566: WebUI: test_user_caless: test if user is enabled Action: opened PR body: """ Test checks if the user is enabled, able to reset their password and authentication types in CA-less environment. Related: https://pagure.io/freeipa/issue/8203 Signed-off-by: Michal Polovka <mpolovka(a)redhat.com> """ To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/5566/head:pr5566 git checkout pr5566

2 years, 5 months

1
1
0 / 0

[freeipa PR#5388][opened] Better mod_wsgi configuration

by tiran

URL: https://github.com/freeipa/freeipa/pull/5388 Author: tiran Title: #5388: Better mod_wsgi configuration Action: opened PR body: """ * Remove WSGIImportScript * Configure process-group in WSGIScriptAlias * Run WSGI app in main interpreter of daemon script * move WSGI app code to main code base so it can be used with other WSGI servers that expect a Python package. * populate LDAP schema early to speed up first request by ~200ms * gc.collect() and gc.freeze() to improve memory handling and GC See: https://github.com/GrahamDumpleton/mod_wsgi/issues/642#issuecomment-74949... Signed-off-by: Christian Heimes <cheimes(a)redhat.com> """ To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/5388/head:pr5388 git checkout pr5388

2 years, 5 months

2
1
0 / 0

[freeipa PR#5556][opened] ipatests: various enhancement to hidden replica tests

by fcami

URL: https://github.com/freeipa/freeipa/pull/5556 Author: fcami Title: #5556: ipatests: various enhancement to hidden replica tests Action: opened PR body: """ https://github.com/freeipa/freeipa/pull/5183 redux. I cannot reopen the original PR because the branch was force-pushed. + ipatests: add wait_for_ipa_to_start wait_for_ipa_to_start(host) waits for ipactl to return RUNNING for all IPA services on the specified host. Related: https://pagure.io/freeipa/issue/8534 + ipatests: hiddenreplica: use wait_for_ipa_to_start after restore Use wait_for_ipa_to_start to wait until the restored replica is online. Related: https://pagure.io/freeipa/issue/8534 + ipatests: use wait_for_replication for hidden replica checks Previously, hidden replica checks were run without waiting for replication to complete, potentially leading to unstable behavior. Use wait_for_replication. Fixes: https://pagure.io/freeipa/issue/8534 + ipatests: hidden replica: misc fixes Split a test in two and add additional fixes. Related: https://pagure.io/freeipa/issue/8534 """ To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/5556/head:pr5556 git checkout pr5556

2 years, 6 months

2
1
0 / 0

[freeipa PR#5568][opened] ipa passwd: make help for `--otp` option clearer

by antoniotorresm

URL: https://github.com/freeipa/freeipa/pull/5568 Author: antoniotorresm Title: #5568: ipa passwd: make help for `--otp` option clearer Action: opened PR body: """ Update help for the `--otp` option in `ipa passwd` to actually explain its usage. Fixes: https://pagure.io/freeipa/issue/8244 Signed-off-by: Antonio Torres <antorres(a)redhat.com> """ To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/5568/head:pr5568 git checkout pr5568

2 years, 6 months

2
1
0 / 0

[freeipa PR#5587][opened] Allow multiple permitopen/permitlisten entries in SSH keys

by antoniotorresm

URL: https://github.com/freeipa/freeipa/pull/5587 Author: antoniotorresm Title: #5587: Allow multiple permitopen/permitlisten entries in SSH keys Action: opened PR body: """ SSH keys allow to have multiple entries for the permitopen and permitlisten options. Prior to this change, only one of each could be configured. Fixes: https://pagure.io/freeipa/issue/8423 Signed-off-by: Antonio Torres <antorres(a)redhat.com> """ To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/5587/head:pr5587 git checkout pr5587

2 years, 6 months

2
1
0 / 0

2023

2022

2021

2020

2019

2018

2017

FreeIPA-devel February 2021