rpms/ipa
7
0
Fork 0
Code Issues Pull Requests Releases Activity
334 Commits 17 Branches 116 Tags 12 MiB
cc272c95c6
Commit Graph

334 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Alexander Bokovoy
cc272c95c6 Rebuild against samba 4.16.3-2.fc37 
Resolves: rhbz#2110746

Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
 2022-07-26 12:30:18 +03:00
Fedora Release Engineering
2cec094c03 Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild 
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
 2022-07-21 03:36:30 +00:00
Rob Crittenden
e304b9f95e freeIPA 4.10.0 upstream release 
Release notes: https://www.freeipa.org/page/Releases/4.10.0

Signed-off-by: Rob Crittenden <rcritten@redhat.com>
 2022-06-30 11:28:59 -04:00
Python Maint
6d962d6a46 Rebuilt for Python 3.11 2022-06-16 13:34:41 +02:00
Alexander Bokovoy
5a94ba182b FreeIPA 4.9.10 upstream release 
Release notes: https://www.freeipa.org/page/Releases/4.9.10

Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
 2022-06-16 09:36:48 +03:00
Alexander Bokovoy
f720512e6b Update dependencies given F34 retire 
Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
 2022-06-16 09:19:58 +03:00
Python Maint
a29398a07b Rebuilt for Python 3.11 2022-06-15 19:09:59 +02:00
Alexander Bokovoy
f256fb899c FreeIPA 4.9.9 
Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
 2022-04-27 17:53:56 +03:00
Alexander Bokovoy
95b29321ec Use -H option for OpenLDAP client tools as -h and -p are deprecated now 
Resolves: rhbz#2050921

Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
 2022-02-07 13:08:53 +02:00
Fedora Release Engineering
de337079bd - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild 
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
 2022-01-20 03:24:33 +00:00
Alexander Bokovoy
81d6866ce9 Make possible to compile FreeIPA against OpenLDAP 2.6 
Resolves: rhbz#2032701

Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
 2022-01-12 09:15:09 +02:00
Alexander Bokovoy
e500f868ac FreeIPA 4.9.8 upstream release 
Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
 2021-11-26 09:44:16 +02:00
Alexander Bokovoy
a60b978d36 Harden PAC processing -- trusted domains 
Handle SIDs of the trusted domains during S4U extensions

Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
 2021-11-11 20:32:05 +02:00
Alexander Bokovoy
ec142de931 Hardening for CVE-2020-25717 
Generate SIDs for IPA users and groups by default
Verify MS-PAC consistency when it is generated or validated
Rebuild against samba-4.15.2

Resolves: rhbz#2021720

Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
 2021-11-10 19:12:36 +02:00
Rob Crittenden
b0ff11761b Make Dogtag return XML for ipa cert-find 
Backport upstream patch from https://pagure.io/freeipa/issue/8980

Resolves: #2014658
 2021-10-15 14:51:39 -04:00
Sahana Prasad
e1ba897218 Rebuilt with OpenSSL 3.0.0 2021-09-14 19:02:06 +02:00
François Cami
edbc2d28ae Upstream release FreeIPA 4.9.7 
Resolves: rhbz#1994739

Signed-off-by: François Cami <fcami@redhat.com>
 2021-08-20 14:03:32 +02:00
François Cami
1b7159c02c Remove dependency on python3-pexpect on RHEL9. 
Resolves: rhbz#1980734

Signed-off-by: François Cami <fcami@redhat.com>
 2021-08-06 15:23:02 +02:00
Fedora Release Engineering
81c2724bff - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild 
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
 2021-07-21 23:20:54 +00:00
Alexander Bokovoy
cf93e992cc Bump release 
Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
 2021-07-16 16:35:37 +03:00
Alexander Bokovoy
07faf2d8b8 Rebuild against samba 4.15.0 RC1 
Also depend on sssd-winbind-idmap for freeipa-server-trust-ad

Resolves: rhbz#1970168

Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
 2021-07-16 16:33:49 +03:00
Alexander Bokovoy
82287448af remove references to custodia as it is merged in FreeIPA 
Resolves: rhbz#1978632

Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
 2021-07-02 14:15:21 +03:00
François Cami
fc48683f41 Upstream release FreeIPA 4.9.3 
Signed-off-by: François Cami <fcami@redhat.com>
 2021-06-29 19:38:50 +02:00
Alexander Bokovoy
9eee394ae1 Rebuild for Python 3.10, second part 
A rebuild is needed for picking up a new dependency for python3-wsgi

Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
 2021-06-14 09:22:42 +03:00
Python Maint
4cd3eaa0f6 Rebuilt for Python 3.10 2021-06-04 20:04:44 +02:00
Alexander Bokovoy
e95becb243 Add missing patch 
Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
 2021-06-04 16:03:45 +03:00
Alexander Bokovoy
f6e7b19cc5 FreeIPA 4.9.4 
Fix missing creds breakage in 'ipa' tool post-release

Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
 2021-06-04 15:50:17 +03:00
Alexander Bokovoy
bedd4a4587 Part 2 of the replication plugin rename fix 
Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
 2021-06-01 12:34:37 +03:00
Alexander Bokovoy
c999c986a6 Handle rename of replication plugin in 389-ds 
Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
 2021-06-01 10:55:29 +03:00
Vit Mojzis
299287cb53 tests: Add decentralized SELinux policy test 
- Test for unsound/dangerous SELinux policy practices
- Perform static policy code check using SELint

For more details and debugging tips see
https://fedoraproject.org/wiki/SELinux/IndependentPolicy#Testing
 2021-05-11 17:33:47 +02:00
Alexander Bokovoy
df0fbfd556 Handle failures to resolve non-existing reverse zones during deployment with systemd-resolved 
Resolves: rhbz#1948034

Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
 2021-04-12 22:35:47 +03:00
Alexander Bokovoy
4b3503176e Upstream release FreeIPA 4.9.3 
Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
 2021-03-31 09:49:32 +03:00
Rob Crittenden
506b58c190 Change the method rpminspect uses to verify spec/package naming 
Using suffix instead of full so we can ignore the free part.
 2021-03-23 14:46:38 -04:00
Alexander Bokovoy
66db9529f8 Rebuild against 389-ds and PKI to fix https://github.com/389ds/389-ds-base/issues/4609 
Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
 2021-02-26 22:21:20 +02:00
Alexander Bokovoy
71a36c6ab9 Only use python-platform on RHEL 8 
Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
 2021-02-23 17:41:48 +02:00
Troy Dawson
4de77e9638 platform-python only on RHEL8 2021-02-19 21:28:16 +00:00
Alexander Bokovoy
f25a4e55eb Fix ipatests dependency to python3-pexpect 
Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
 2021-02-15 21:34:42 +02:00
Alexander Bokovoy
9c43e47a35 Update to FreeIPA 4.9.2 
New upstream release.

Add RHEL/Fedora ELN-only branding patch.

Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
 2021-02-15 21:02:25 +02:00
Alexander Bokovoy
e98c2f2a47 Remove unused patches 2021-02-01 09:45:35 +02:00
Alexander Bokovoy
179e81bf0a FreeIPA 4.9.1 release 2021-01-27 15:38:23 +02:00
Fedora Release Engineering
0b71cc63e9 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild 
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
 2021-01-26 05:54:38 +00:00
Rob Crittenden
c4a47619fb Set client keytab location for 389ds 
Resolves: RHBZ#1918075
 2021-01-20 17:48:10 -05:00
Alexander Bokovoy
9ed0331cde FreeIPA 4.9.0 release 
Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
 2020-12-23 17:07:21 +02:00
Alexander Bokovoy
d10972a2bf Test a fix for rhbz#1902811 2020-12-16 08:11:09 +02:00
Alexander Bokovoy
d1d2d3bc50 Remove outdated patch reference for RHEL build 2020-12-16 07:51:20 +02:00
Alexander Bokovoy
dcdddd25b4 FreeIPA 4.9.0 release candidate 3 2020-12-10 18:41:26 +02:00
Alexander Bokovoy
b91bf7ae0f Apply 4.9.0rc2 fixes from upstream 
Allow mod_auth_gssapi to create and access ccaches in /run/ipa/ccaches
Fixes: https://pagure.io/freeipa/issue/8613

upgrade: provide DOMAIN to the server upgrade dictionary
Fixes: https://pagure.io/freeipa/issue/8615
 2020-12-09 20:07:18 +02:00
Alexander Bokovoy
3ad697a03a Correct selinux requirement 
freeipa-selinux subpackage is used by both client and server but
requires freeipa-server subpackage unconditionally. This needs to be
removed.

Originally, upstream spec file did not have this bug. It was brought
in with unification of the specfiles.

Resolves: rhbz#1883005

Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
 2020-12-04 22:21:50 +02:00
Alexander Bokovoy
ae7e82eec2 Update to FreeIPA 4.9.0 release candidate 2 2020-12-04 13:53:27 +02:00
Alexander Bokovoy
41b946dfeb Remove old freeipa-server requirement in selinux subpackage 2020-11-19 20:53:07 +02:00