August 2021 - FreeIPA-devel - Fedora Mailing-Lists

[freeipa PR#5976][opened] Translations update from Weblate

by weblate

URL: https://github.com/freeipa/freeipa/pull/5976 Author: weblate Title: #5976: Translations update from Weblate Action: opened PR body: """ Translations update from [Weblate](https://translate.fedoraproject.org/projects/freeipa/ipa-4-8/) for freeipa/ipa-4-8. Current translation status: ![Weblate translation status](https://translate.fedoraproject.org/widgets/freeipa/-/ipa-4-8/hor... """ To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/5976/head:pr5976 git checkout pr5976

1 year, 5 months

2
1
0 / 0

[freeipa PR#5939][opened] ipaserver: disable resolved' stub resolver

by fcami

URL: https://github.com/freeipa/freeipa/pull/5939 Author: fcami Title: #5939: ipaserver: disable resolved' stub resolver Action: opened PR body: """ Disable systemd-resolved stub resolver at install time. Use systemd-resolved' maintained list of upstream DNS servers instead. Rationale: systemd-resolved always resolves the FQDN to the local IP and vice-versa. This breaks DNS zone detection and especially reverse zone detection. This results in --auto-reverse being broken. On systemd-resolved enabled systems, there are four ways to configure resolv.conf: * a symlink to /run/systemd/resolve/stub-resolv.conf This is the default and uses both the 127.0.0.53 DNS stub plus the search domains. * a symlink to /usr/lib/systemd/resolv.conf This only contains the 127.0.0.53 DNS stub. * a symlink to /run/systemd/resolve/resolv.conf This contains the upstream DNS IPs and bypasses systemd-resolved. * Create and maintain /etc/resolv.conf directly. Solutions #1 and #2 break DNS zone detection. Solution #4 is not straightforward. Combine Solution3 and 4: copy the file containing the upstream DNS IPs so that it is properly maintained by NetworkManager after installation. Fixes: https://pagure.io/freeipa/issue/8700 Signed-off-by: François Cami <fcami(a)redhat.com> """ To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/5939/head:pr5939 git checkout pr5939

1 year, 6 months

1
1
0 / 0

[freeipa PR#5845][opened] component: Fix installation on hosts withouc /proc/1/sched.

by pfandl

URL: https://github.com/freeipa/freeipa/pull/5845 Author: pfandl Title: #5845: component: Fix installation on hosts withouc /proc/1/sched. Action: opened PR body: """ My host does not have `/proc/1/sched` and this patch fixes the installation exception. I have not tested the other code path where `ìs_hidepid` is `True`. best regards """ To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/5845/head:pr5845 git checkout pr5845

1 year, 6 months

1
1
0 / 0

[freeipa PR#5975][opened] schema plugin: Fix commands without metaobject argument

by stanislavlevin

URL: https://github.com/freeipa/freeipa/pull/5975 Author: stanislavlevin Title: #5975: schema plugin: Fix commands without metaobject argument Action: opened PR body: """ - schema plugin: fix commands without metaobject arg - command_defaults: don't crash on nonexistent command - test_schema_plugin: drop dependency on Tracker - test_schema_plugin: add missing tests for command, class and topic commands Fixes: https://pagure.io/freeipa/issue/8954 """ To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/5975/head:pr5975 git checkout pr5975

1 year, 8 months

2
1
0 / 0

[freeipa PR#5985][opened] Increase default limit on LDAP searches to 100k

by rcritten

URL: https://github.com/freeipa/freeipa/pull/5985 Author: rcritten Title: #5985: Increase default limit on LDAP searches to 100k Action: opened PR body: """ A similar change was attempted years ago in commit 9724251292e4c0797367fcc351a9f16f30c6aefe but it was never applied because it used the wrong DN and because nsslapd-timelimit is already present in the entry the default keyword won't trigger. Use replace instead to increase the value to 100k from the default as originally intended. https://pagure.io/freeipa/issue/8962 Signed-off-by: Rob Crittenden <rcritten(a)redhat.com> """ To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/5985/head:pr5985 git checkout pr5985

1 year, 9 months

1
1
0 / 0

[freeipa PR#5995][opened] Catch and log errors when adding CA profiles

by rcritten

URL: https://github.com/freeipa/freeipa/pull/5995 Author: rcritten Title: #5995: Catch and log errors when adding CA profiles Action: opened PR body: """ Rather than stopping the installer entirely, catch and report errors adding new certificate profiles. It was discovered that installing a newer IPA that has the ACME profile which requires sanToCNDefault will fail when installing a new server against a very old one that lacks this class. Deleting the LDAP profile in cn=certprofiles,cn=ca,$SUFFIX and then running ipa-server-install on the newer server will add the missing profile. https://pagure.io/freeipa/issue/8974 Signed-off-by: Rob Crittenden <rcritten(a)redhat.com> """ To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/5995/head:pr5995 git checkout pr5995

1 year, 9 months

1
1
0 / 0

[freeipa PR#5991][opened] extdom: return LDAP_NO_SUCH_OBJECT if domains differ

by sumit-bose

URL: https://github.com/freeipa/freeipa/pull/5991 Author: sumit-bose Title: #5991: extdom: return LDAP_NO_SUCH_OBJECT if domains differ Action: opened PR body: """ If a client sends a request to lookup an object from a given trusted domain by UID or GID and an object with matching ID is only found in a different domain the extdom should return LDAP_NO_SUCH_OBJECT to indicate to the client that the requested ID does not exists in the given domain. Resolves: https://pagure.io/freeipa/issue/8965 """ To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/5991/head:pr5991 git checkout pr5991

1 year, 9 months

2
1
0 / 0

[freeipa PR#5997][opened] [Backport][ipa-4-9] Add URI system records for KDC

by rcritten

URL: https://github.com/freeipa/freeipa/pull/5997 Author: rcritten Title: #5997: [Backport][ipa-4-9] Add URI system records for KDC Action: opened PR body: """ This PR was opened automatically because PR #5990 was pushed to master and backport to ipa-4-9 is required. """ To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/5997/head:pr5997 git checkout pr5997

1 year, 9 months

2
1
0 / 0

[freeipa PR#5990][opened] Temp commit

by tiran

URL: https://github.com/freeipa/freeipa/pull/5990 Author: tiran Title: #5990: Temp commit Action: opened PR body: """ None """ To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/5990/head:pr5990 git checkout pr5990

1 year, 9 months

2
1
0 / 0

[freeipa PR#5996][opened] [Backport][ipa-4-9] selinux policy: allow custodia to access /proc/cpuinfo

by flo-renaud

URL: https://github.com/freeipa/freeipa/pull/5996 Author: flo-renaud Title: #5996: [Backport][ipa-4-9] selinux policy: allow custodia to access /proc/cpuinfo Action: opened PR body: """ This PR was opened automatically because PR #5994 was pushed to master and backport to ipa-4-9 is required. """ To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/5996/head:pr5996 git checkout pr5996

1 year, 9 months

1
1
0 / 0

2023

2022

2021

2020

2019

2018

2017

FreeIPA-devel August 2021