import ansible-freeipa-0.3.8-1.el8
This commit is contained in:
CentOS Sources
Stepan Oksanichenko
parent
72314a0ec3
commit
23366a39cf
@ -1 +1 @@
|
||||
7c66c505597de97501d68c81fc1495aa4d627879 SOURCES/ansible-freeipa-0.3.2.tar.gz
|
||||
1d86f49f014b14a569969b4f859fb017f26de285 SOURCES/ansible-freeipa-0.3.8.tar.gz
|
||||
|
||||
2
.gitignore
vendored
2
.gitignore
vendored
@ -1 +1 @@
|
||||
SOURCES/ansible-freeipa-0.3.2.tar.gz
|
||||
SOURCES/ansible-freeipa-0.3.8.tar.gz
|
||||
|
||||
@ -1,39 +0,0 @@
|
||||
From 976cd1baa70b3ac1a271a362163e469b8d54d04a Mon Sep 17 00:00:00 2001
|
||||
From: Thomas Woerner <twoerner@redhat.com>
|
||||
Date: Mon, 22 Feb 2021 13:28:04 +0100
|
||||
Subject: [PATCH] ipaclient: Do not fail on rmkeytab error #7
|
||||
|
||||
Due to commit f3f9672d527008dc741ac90aa465bac842eea08d (ipa-rmkeytab: Check
|
||||
return value of krb5_kt_(start|end)_seq_get) in IPA 4.9.2 there is a new
|
||||
error reported for ipa-rmkeytab in case of a non existing keytab file.
|
||||
Using ipa-rmkeytab now results in the error #7 in this case.
|
||||
|
||||
The client role is using ipa-rmkeytab and needs to ignore error #7 also.
|
||||
|
||||
Fixes: #510 (ipa-client installation with OTP is failed with error code 7
|
||||
(keytab: /usr/sbin/ipa-rmkeytab returned 7))
|
||||
---
|
||||
roles/ipaclient/tasks/install.yml | 6 +++++-
|
||||
1 file changed, 5 insertions(+), 1 deletion(-)
|
||||
|
||||
diff --git a/roles/ipaclient/tasks/install.yml b/roles/ipaclient/tasks/install.yml
|
||||
index fccc72e..23f9529 100644
|
||||
--- a/roles/ipaclient/tasks/install.yml
|
||||
+++ b/roles/ipaclient/tasks/install.yml
|
||||
@@ -181,8 +181,12 @@
|
||||
# Do not fail on error codes 3 and 5:
|
||||
# 3 - Unable to open keytab
|
||||
# 5 - Principal name or realm not found in keytab
|
||||
+ # 7 - Failed to set cursor, typically when errcode
|
||||
+ # would be issued in past
|
||||
failed_when: result_ipa_rmkeytab.rc != 0 and
|
||||
- result_ipa_rmkeytab.rc != 3 and result_ipa_rmkeytab.rc != 5
|
||||
+ result_ipa_rmkeytab.rc != 3 and
|
||||
+ result_ipa_rmkeytab.rc != 5 and
|
||||
+ result_ipa_rmkeytab.rc != 7
|
||||
when: (ipaclient_use_otp | bool or ipaclient_force_join | bool) and not ipaclient_on_master | bool
|
||||
|
||||
- name: Install - Backup and set hostname
|
||||
--
|
||||
2.29.2
|
||||
|
||||
@ -7,23 +7,17 @@
|
||||
|
||||
Summary: Roles and playbooks to deploy FreeIPA servers, replicas and clients
|
||||
Name: ansible-freeipa
|
||||
Version: 0.3.2
|
||||
Release: 2%{?dist}
|
||||
Version: 0.3.8
|
||||
Release: 1%{?dist}
|
||||
URL: https://github.com/freeipa/ansible-freeipa
|
||||
License: GPLv3+
|
||||
Source: https://github.com/freeipa/ansible-freeipa/archive/v%{version}.tar.gz#/%{name}-%{version}.tar.gz
|
||||
Patch0: ansible-freeipa-0.3.2-ipaclient-Do-not-fail-on-rmkeytab-error-7_rhbz#1931381.patch
|
||||
BuildArch: noarch
|
||||
|
||||
%description
|
||||
ansible-freeipa provides Ansible roles and playbooks to install and uninstall
|
||||
FreeIPA servers, replicas and clients. Also modules for management.
|
||||
|
||||
|
||||
Note: The ansible playbooks and roles require a configured ansible environment
|
||||
where the ansible nodes are reachable and are properly set up to have an IP
|
||||
address and a working package manager.
|
||||
Ansible roles and playbooks to install and uninstall FreeIPA servers, replicas and clients. Also modules for group, host, topology and user management.
|
||||
|
||||
Note: The Ansible playbooks and roles require a configured Ansible environment where the Ansible nodes are reachable and are properly set up to have an IP address and a working package manager.
|
||||
Features
|
||||
|
||||
- Server, replica and client deployment
|
||||
@ -31,6 +25,7 @@ Features
|
||||
- One-time-password (OTP) support for client installation
|
||||
- Repair mode for clients
|
||||
- Backup and restore, also to and from controller
|
||||
- Modules for automembership rule management
|
||||
- Modules for config management
|
||||
- Modules for delegation management
|
||||
- Modules for dns config management
|
||||
@ -49,12 +44,13 @@ Features
|
||||
- Modules for pwpolicy management
|
||||
- Modules for role management
|
||||
- Modules for self service management
|
||||
- Modules for server management
|
||||
- Modules for service management
|
||||
- Modules for sudocmd management
|
||||
- Modules for sudocmdgroup management
|
||||
- Modules for sudorule management
|
||||
- Modules for topology management
|
||||
- Modules fot trust management
|
||||
- Modules for trust management
|
||||
- Modules for user management
|
||||
- Modules for vault management
|
||||
|
||||
@ -62,10 +58,7 @@ Supported FreeIPA Versions
|
||||
|
||||
FreeIPA versions 4.6 and up are supported by all roles.
|
||||
|
||||
The client role supports versions 4.4 and up, the server role is working with
|
||||
versions 4.5 and up, the replica role is currently only working with versions
|
||||
4.6 and up.
|
||||
|
||||
The client role supports versions 4.4 and up, the server role is working with versions 4.5 and up, the replica role is currently only working with versions 4.6 and up.
|
||||
Supported Distributions
|
||||
|
||||
- RHEL/CentOS 7.4+
|
||||
@ -109,7 +102,6 @@ to get the needed requrements to run the tests.
|
||||
|
||||
%prep
|
||||
%setup -q
|
||||
%patch0 -p1
|
||||
# Do not create backup files with patches
|
||||
|
||||
# Fix python modules and module utils:
|
||||
@ -167,9 +159,48 @@ cp -rp tests %{buildroot}%{_datadir}/ansible-freeipa/
|
||||
%{_datadir}/ansible-freeipa/requirements-tests.txt
|
||||
|
||||
%changelog
|
||||
* Thu Mar 4 2021 Thomas Woerner <twoerner@redhat.com> - 0.3.2-2
|
||||
- Fix ipaclient: Do not fail on rmkeytab error 7
|
||||
Resolves: RHBZ#1931381
|
||||
* Tue Jul 13 2021 Thomas Woerner <twoerner@redhat.com> - 0.3.8-1
|
||||
- Update to version 0.3.8
|
||||
https://github.com/freeipa/ansible-freeipa/releases/tag/v0.3.8
|
||||
Related: RHBZ#1959875
|
||||
- automember: Verify condition keys
|
||||
Related: RHBZ#1976926
|
||||
|
||||
* Tue Jul 13 2021 Thomas Woerner <twoerner@redhat.com> - 0.3.7-1
|
||||
- Update to version 0.3.7
|
||||
https://github.com/freeipa/ansible-freeipa/releases/tag/v0.3.7
|
||||
Related: RHBZ#1959875
|
||||
- automember: Fix action to be automember or member, not service
|
||||
Resolves: RRBZ#1976923
|
||||
- automember: Fix result["failed"] issues with conditions
|
||||
Resolves: RRBZ#1976926
|
||||
|
||||
* Wed Jun 9 2021 Thomas Woerner <twoerner@redhat.com> - 0.3.6-3
|
||||
- Apply fix for ipabackup: Use module to get IPA_BACKUP_DIR from ipaplatform
|
||||
Related: RRBZ#1969847
|
||||
|
||||
* Wed Jun 9 2021 Thomas Woerner <twoerner@redhat.com> - 0.3.6-2
|
||||
- ipabackup: Use module to get IPA_BACKUP_DIR from ipaplatform
|
||||
Resolves: RRBZ#1969847
|
||||
|
||||
* Mon Jun 7 2021 Thomas Woerner <twoerner@redhat.com> - 0.3.6-1
|
||||
- Update to version 0.3.6
|
||||
https://github.com/freeipa/ansible-freeipa/releases/tag/v0.3.6
|
||||
Resolves: RHBZ#1959875
|
||||
- ansible-freeipa-tests not in the compose
|
||||
Resolves: RHBZ#1936869
|
||||
- Remove unsupported parameter for (ipapermission) module: perm_rights from
|
||||
permission-present.yml
|
||||
Resolves: RHBZ#1921654
|
||||
- Sample playbook included for selfservice module is incorrect
|
||||
Resolves: RHBZ#1922060
|
||||
- ipa-client-install failing with error code 7(keytab: /usr/sbin/ipa-rmkeytab
|
||||
returned 7)
|
||||
Resolves: RHBZ#1935123
|
||||
- New management module ipaserver
|
||||
Resolves: RHBZ#1966493
|
||||
- New management module ipaautomember
|
||||
Resolves: RHBZ#1966496
|
||||
|
||||
* Mon Jan 18 2021 Thomas Woerner <twoerner@redhat.com> - 0.3.2-1
|
||||
- Update to version 0.3.2
|
||||
|
||||
Loading…
Reference in New Issue
Block a user