Commits on Source (34)
-
Akshay Adhikari authored
Description: Added new tests in the password suite, performing extended password modify operations. https://pagure.io/389-ds-base/issue/48081 Reviewed by: spichugi(Thanks!)
9d736d68 -
Mark Reynolds authored
Description: Added backend features (chaining, db, indexes, vlv, attr encryption, and monitor to the CLI. Addressed https://pagure.io/389-ds-base/issue/48881 that prevented VLV search/index entries from being updated. Also updated jstree js file. https://pagure.io/389-ds-base/issue/49994 Reviewed by: spichugi & firstyear(Thanks!)89886ba4 -
Mark Reynolds authored
Description: Accidentally left dev paths for CLI tools in UI uncommented https://pagure.io/389-ds-base/issue/49994
683bc575 -
Fraser Tweedale authored
Bug Description: Differences in DN string representations between the value included in certmap.conf, and the stringified value of the Issuer DN produced by NSS, as well as buggy DN normalisation code in 389 itself, cause 389 to wrongly reject the correct certmap configuration to use. Authentication fails. This behaviour was observed when there is an escaped comma in an attribute value. Fix Description: Instead of comparing stringified DNs, parse the DN represented in certmap.conf into an NSS CertNAME. Use the NSS DN comparison routine when comparing certificate Issuer DNs against the certmap configurations. Remove the buggy DN normalisation routine. https://pagure.io/389-ds-base/issue/49543 Author: Fraser Tweedale <ftweedal@redhat.com> Review by: ???
70bdd335 -
Mark Reynolds authored
Description: If the server port is within a selinux policy range do not try to add or remove the port as it will cause a failure during removal (even though the removal actually worked) https://pagure.io/389-ds-base/issue/49814 Reviewed by: spichugi(Thanks!)5d611f1c -
Mark Reynolds authored
Description: When you don't specify any attributes to index, then all attributes should be reindexed. This is accomplished by using "ns-slapd upgradedb" but we were not using the correct command line options for this to work. https://pagure.io/389-ds-base/issue/49927 Reviewed by: spichugi(Thanks!)6fe61010 -
Mark Reynolds authored
Description: Fix 50022 - Confusing command line switches for dscreate and dsctl Fix 50012 - Add option to dsctl to remove all instances Fix 49956 - dsctl: add an option to list all available instances Fix 49800 - Debug messages "OK user/group dirsrv exists" are emitted when lib389 cli tools are used https://pagure.io/389-ds-base/issue/50022 https://pagure.io/389-ds-base/issue/50012 https://pagure.io/389-ds-base/issue/49956 https://pagure.io/389-ds-base/issue/49800 Reviewed by: spichugi(Thanks!)
4fd73c5d -
Mark Reynolds authored
Description: Remove the "brought to you by the letter..." messages from the CLI debug logging. https://pagure.io/389-ds-base/issue/50046 Reviewed by: spichugi(Thanks!)a8f62ee1 -
Mark Reynolds authored
Ticket 49950 - PassSync not setting pwdLastSet attribute in Active Directory after Pw update from LDAP sync for normal user Bug Description: If a user's password was reset by an "Admin" or directory manager, the password policy requires a user must change their password after it's been "reset", and the user then resets their password in DS, this information was not sent to AD. Then if the user logged in AD after resetting their password in DS they still get forced to change their password again in AD. Fix Description: When sending a password update to AD, and AD is enforcing password must be reset, check if the user's did reset thier password. If so, set the correct "pwdLastSet" value to prevent AD from forcing that user to change their password again. But this only works going from DS to AD. The information needed to make it work from AD -> DS is not available to passSync, and if it was available it could not be correctly sent to DS anyway (not without a major redesign). Side Note: Also moved iand consolidated the function "fetch_attr" to util.c. It was reused and redefined in many plugins. So I added the definition to slapi-plugin.h and removed the duplicate definitions. https://pagure.io/389-ds-base/issue/49950 Reviewed by: tbordaz(Thanks!)
d9437be2 -
Simon Pichugin authored
Description: Create an empty domain with basic ACIs while creating an instance without sample_entries but with a backend. https://pagure.io/389-ds-base/issue/49984 Reviewed by: mreynolds, vashirov (Thanks!)
5acc4e48 -
Simon Pichugin authored
Description: In lib389/instances/setup.py the _install_ds method of class SetupDs uses sysconf_dir with hardcoded path sysconfig instead of initconfig_dir. This breaks the script if initconfig_dir is not equal to /etc/sysconfig, e.g. /etc/default. https://pagure.io/389-ds-base/issue/49974 Author: Jan N (janluca) Reviewed by: vashirov (Thanks!)
a990d044 -
Thierry Bordaz authored
Bug Description: When an entry contains an attribute that is also defined by a cos definition a specifier defines which values win: the real values that are in the entry or the virtual values that are cos defined. The specifier 'default' means that the real values are the winners (returned). 'operational-default' has the same behavior but just specify that the attribute is operational. The bug is that when real values exists, the 'operational-default' specifier drops the real values in favor of the virtual ones. Fix Description: Change the test, so that real values are not kept for 'operation-default' Note: the full routine cos_cache_query_attr looks quite messy and error prone It would be nice to rewrite it when we have time https://pagure.io/389-ds-base/issue/50053 Reviewed by: Mark Reynolds Platforms tested: F27 Flag Day: no Doc impact: no
5d7b95cc -
Thierry Bordaz authoredf2ff28e0
-
Stanislav Levin authored
@8915d8d8 and @4471b735 modified "usetxn" parameter in "hashtable_new" scope (was a global variable before). But the callers of this function don't pass argument into. Thus, "usetxn" acts as an uninitialized auto variable. Fixes: https://pagure.io/389-ds-base/issue/50057
b646e4da -
Mark Reynolds authored
Description: Revised the tools usage to be cleaner and more intuitive. Added a "-y" option to use a password file. Added a "state" function to just return an RUV comparison Moved all the process status messages to only be displayed in verbose mode. https://pagure.io/389-ds-base/issue/50028 Reviewed by: spichugi(Thanks!)3fe4b5b0 -
Simon Pichugin authored
Description: Add basic plugin functionality - Table and Modal. Add Notificationcontroller component which can be used by other components in the future. Add cockpit component for onoff switch. Add custoTableToolbar component with search field and loading spinner. Add edit option to Plugin CLI. Fix ds.css according to eslint. Remove custom OnOffSwitch component because Patternfly seems to work okay. Move the start/stop/restart and change server-select event listners to the "document is ready" part. React requires the change. https://pagure.io/389-ds-base/issue/50041 Reviewed by: mreynolds, mhonek (Thanks!)
b844aab6 -
Mark Reynolds authored
Description: Replace error log severity message from ERR to WARNING https://pagure.io/389-ds-base/issue/50062 Reviewed by: mreynolds(one line commit rule)
bae33f97 -
Mark Reynolds authored
Description: While we do not support backup/restore of individual backends, it should not crash the server either. PR_OpenDir will crash if the file name is NULL, so this fix just prevents the crash by returning an error if the filename is NULL. https://pagure.io/389-ds-base/issue/50063 Reviewed by: firstyear & tbordaz(Thanks!!)d36f796a -
Simon Pichugin authored
Description: Get all the schema in one search, then the UI loads it once, and parse out attrs, oc's, and mr's. Add 'dsconf schema list' command for that. Reset x-origin field in 'clear_form()' funcitons. Set 'View' header for the view modal form. https://pagure.io/389-ds-base/issue/50061 Reviewed by: mreynolds (Thanks!)
55ec4ef3 -
Mark Reynolds authored
Bug Description: ACI parsing is very strict around parsing "version 3.0;". If there are any spaces around the semicolon parsing fails. Fix Description: Add a normalization function that removes duplicate consecutive spaces, and handles spaces around the version string. https://pagure.io/389-ds-base/issue/50065 Reviewed by: spichugi(Thanks!)5eab3b57 -
Simon Pichugin authored
Description: remove_ds_instance function require DirSrv object having port and sslport defined for semanage remove label operation. We should set it in local_simple_allocate too. Fix DSEldif.get function so it returns a list instead of a view (Python 3 change). https://pagure.io/389-ds-base/issue/50071 Reviewed by: mhonek, tbordaz, cheimes (Thanks!)
1698dd8e -
Mark Reynolds authored
Description: Transient errors are temporary conditions that usually resolve themselves. But the message are vague and alarming. This patch changes it to a "warning" message. https://pagure.io/389-ds-base/issue/49864 Reviewed by: spichugi & firstyear(Thanks!)bb335e01 -
Mark Reynolds authored
Description: Fix several issues discovered during QE testing https://bugzilla.redhat.com/show_bug.cgi?id=1654101 - dscreate issues https://bugzilla.redhat.com/show_bug.cgi?id=1654585 - dsidm sys ext error https://bugzilla.redhat.com/show_bug.cgi?id=1654105 - dsconf related issues https://bugzilla.redhat.com/show_bug.cgi?id=1654116 - dsctl remove "confirm with "Yes" https://bugzilla.redhat.com/show_bug.cgi?id=1654134 - backups fixed https://bugzilla.redhat.com/show_bug.cgi?id=1654451 - dscreate permissions and selinux issues https://bugzilla.redhat.com/show_bug.cgi?id=1654566 - dbtasks no attr _instance https://bugzilla.redhat.com/show_bug.cgi?id=1631461 - selinux reserved ports https://bugzilla.redhat.com/show_bug.cgi?id=1654518 - issues with selinux ports https://bugzilla.redhat.com/show_bug.cgi?id=1654581 - dsidm sys ext error https://bugzilla.redhat.com/show_bug.cgi?id=1654577 - check if backup already exists https://bugzilla.redhat.com/show_bug.cgi?id=1654693 - add password option for dsconf tools https://pagure.io/389-ds-base/issue/50056 - dscreate defaults for instance name https://pagure.io/389-ds-base/issue/50056 Reviewed by: spichugi(Thanks!)
5ed5f873 -
Thierry Bordaz authored
Ticket 50091 - shadowWarning is not generated if passwordWarning is lower than 86400 seconds (1 day) Bug Description: For a shadowAccount, if a password policy defines passwordWarning below 1 days (86400 seconds) then the shadowWarning (in day) is not returned from the entry. In such case its value is '0'. Fix Description: The fix is to accept shadowWarning = 0 as valid value and return it https://pagure.io/389-ds-base/issue/50091 Reviewed by: Mark Reynolds Platforms tested: F27 Flag Day: no Doc impact: no
967d0aa2 -
Mark Reynolds authored
Description: fetch_attr was recetnly moved toeh public api. This naming context is conflicting with other applications. Appropriately changing the name to start with "slapi_" https://pagure.io/389-ds-base/issue/50090 Reviewed by: mreynolds(one line commit rule)91307878 -
Mark Reynolds authored
Description: Add tests for the backend CLI functions. Also fixed a few minor bugs found from this testing in lib389 and in core DS(chaining). https://pagure.io/389-ds-base/issue/49994 Reviewed by: spichugi(Thanks!)8a08fb65 -
Mark Reynolds authoredb43380f7
-
Timo Aaltonen authored3a6d0b8f
-
Timo Aaltonen authored879ddf8c
-
Timo Aaltonen authored1652c623
-
Timo Aaltonen authored95a239da
-
Timo Aaltonen authorede6dc2bbb
-
Timo Aaltonen authored3ab52f57
-
Timo Aaltonen authored24b832e8
debian/389-ds-base-legacy-tools.install
0 → 100644
debian/patches/fix-nss-path.diff
0 → 100644
dirsrvtests/tests/suites/plugins/cos_test.py
0 → 100644
This diff is collapsed.