rpms/ipa
7
0
Fork 0
Code Issues Pull Requests Releases Activity
329 Commits 17 Branches 116 Tags 12 MiB
f720512e6b
Commit Graph

304 Commits

Author SHA1 Message Date
Alexander Bokovoy
f720512e6b Update dependencies given F34 retire 
Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
 2022-06-16 09:19:58 +03:00
Python Maint
a29398a07b Rebuilt for Python 3.11 2022-06-15 19:09:59 +02:00
Alexander Bokovoy
f256fb899c FreeIPA 4.9.9 
Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
 2022-04-27 17:53:56 +03:00
Alexander Bokovoy
95b29321ec Use -H option for OpenLDAP client tools as -h and -p are deprecated now 
Resolves: rhbz#2050921

Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
 2022-02-07 13:08:53 +02:00
Fedora Release Engineering
de337079bd - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild 
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
 2022-01-20 03:24:33 +00:00
Alexander Bokovoy
81d6866ce9 Make possible to compile FreeIPA against OpenLDAP 2.6 
Resolves: rhbz#2032701

Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
 2022-01-12 09:15:09 +02:00
Alexander Bokovoy
e500f868ac FreeIPA 4.9.8 upstream release 
Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
 2021-11-26 09:44:16 +02:00
Alexander Bokovoy
a60b978d36 Harden PAC processing -- trusted domains 
Handle SIDs of the trusted domains during S4U extensions

Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
 2021-11-11 20:32:05 +02:00
Alexander Bokovoy
ec142de931 Hardening for CVE-2020-25717 
Generate SIDs for IPA users and groups by default
Verify MS-PAC consistency when it is generated or validated
Rebuild against samba-4.15.2

Resolves: rhbz#2021720

Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
 2021-11-10 19:12:36 +02:00
Rob Crittenden
b0ff11761b Make Dogtag return XML for ipa cert-find 
Backport upstream patch from https://pagure.io/freeipa/issue/8980

Resolves: #2014658
 2021-10-15 14:51:39 -04:00
Sahana Prasad
e1ba897218 Rebuilt with OpenSSL 3.0.0 2021-09-14 19:02:06 +02:00
François Cami
edbc2d28ae Upstream release FreeIPA 4.9.7 
Resolves: rhbz#1994739

Signed-off-by: François Cami <fcami@redhat.com>
 2021-08-20 14:03:32 +02:00
François Cami
1b7159c02c Remove dependency on python3-pexpect on RHEL9. 
Resolves: rhbz#1980734

Signed-off-by: François Cami <fcami@redhat.com>
 2021-08-06 15:23:02 +02:00
Fedora Release Engineering
81c2724bff - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild 
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
 2021-07-21 23:20:54 +00:00
Alexander Bokovoy
cf93e992cc Bump release 
Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
 2021-07-16 16:35:37 +03:00
Alexander Bokovoy
07faf2d8b8 Rebuild against samba 4.15.0 RC1 
Also depend on sssd-winbind-idmap for freeipa-server-trust-ad

Resolves: rhbz#1970168

Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
 2021-07-16 16:33:49 +03:00
Alexander Bokovoy
82287448af remove references to custodia as it is merged in FreeIPA 
Resolves: rhbz#1978632

Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
 2021-07-02 14:15:21 +03:00
François Cami
fc48683f41 Upstream release FreeIPA 4.9.3 
Signed-off-by: François Cami <fcami@redhat.com>
 2021-06-29 19:38:50 +02:00
Alexander Bokovoy
9eee394ae1 Rebuild for Python 3.10, second part 
A rebuild is needed for picking up a new dependency for python3-wsgi

Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
 2021-06-14 09:22:42 +03:00
Python Maint
4cd3eaa0f6 Rebuilt for Python 3.10 2021-06-04 20:04:44 +02:00
Alexander Bokovoy
f6e7b19cc5 FreeIPA 4.9.4 
Fix missing creds breakage in 'ipa' tool post-release

Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
 2021-06-04 15:50:17 +03:00
Alexander Bokovoy
bedd4a4587 Part 2 of the replication plugin rename fix 
Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
 2021-06-01 12:34:37 +03:00
Alexander Bokovoy
c999c986a6 Handle rename of replication plugin in 389-ds 
Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
 2021-06-01 10:55:29 +03:00
Alexander Bokovoy
df0fbfd556 Handle failures to resolve non-existing reverse zones during deployment with systemd-resolved 
Resolves: rhbz#1948034

Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
 2021-04-12 22:35:47 +03:00
Alexander Bokovoy
4b3503176e Upstream release FreeIPA 4.9.3 
Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
 2021-03-31 09:49:32 +03:00
Alexander Bokovoy
66db9529f8 Rebuild against 389-ds and PKI to fix https://github.com/389ds/389-ds-base/issues/4609 
Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
 2021-02-26 22:21:20 +02:00
Alexander Bokovoy
71a36c6ab9 Only use python-platform on RHEL 8 
Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
 2021-02-23 17:41:48 +02:00
Troy Dawson
4de77e9638 platform-python only on RHEL8 2021-02-19 21:28:16 +00:00
Alexander Bokovoy
f25a4e55eb Fix ipatests dependency to python3-pexpect 
Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
 2021-02-15 21:34:42 +02:00
Alexander Bokovoy
9c43e47a35 Update to FreeIPA 4.9.2 
New upstream release.

Add RHEL/Fedora ELN-only branding patch.

Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
 2021-02-15 21:02:25 +02:00
Alexander Bokovoy
179e81bf0a FreeIPA 4.9.1 release 2021-01-27 15:38:23 +02:00
Fedora Release Engineering
0b71cc63e9 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild 
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
 2021-01-26 05:54:38 +00:00
Rob Crittenden
c4a47619fb Set client keytab location for 389ds 
Resolves: RHBZ#1918075
 2021-01-20 17:48:10 -05:00
Alexander Bokovoy
9ed0331cde FreeIPA 4.9.0 release 
Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
 2020-12-23 17:07:21 +02:00
Alexander Bokovoy
d10972a2bf Test a fix for rhbz#1902811 2020-12-16 08:11:09 +02:00
Alexander Bokovoy
d1d2d3bc50 Remove outdated patch reference for RHEL build 2020-12-16 07:51:20 +02:00
Alexander Bokovoy
dcdddd25b4 FreeIPA 4.9.0 release candidate 3 2020-12-10 18:41:26 +02:00
Alexander Bokovoy
b91bf7ae0f Apply 4.9.0rc2 fixes from upstream 
Allow mod_auth_gssapi to create and access ccaches in /run/ipa/ccaches
Fixes: https://pagure.io/freeipa/issue/8613

upgrade: provide DOMAIN to the server upgrade dictionary
Fixes: https://pagure.io/freeipa/issue/8615
 2020-12-09 20:07:18 +02:00
Alexander Bokovoy
3ad697a03a Correct selinux requirement 
freeipa-selinux subpackage is used by both client and server but
requires freeipa-server subpackage unconditionally. This needs to be
removed.

Originally, upstream spec file did not have this bug. It was brought
in with unification of the specfiles.

Resolves: rhbz#1883005

Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
 2020-12-04 22:21:50 +02:00
Alexander Bokovoy
ae7e82eec2 Update to FreeIPA 4.9.0 release candidate 2 2020-12-04 13:53:27 +02:00
Alexander Bokovoy
41b946dfeb Remove old freeipa-server requirement in selinux subpackage 2020-11-19 20:53:07 +02:00
Alexander Bokovoy
d0324d20d6 Update spec file 2020-11-19 20:45:31 +02:00
Alexander Bokovoy
5245a181b9 Fix client-only build 
Upstream PR: https://github.com/freeipa/freeipa/pull/5273.patch
 2020-11-18 13:05:01 +02:00
Alexander Bokovoy
792b04177b Remove obsolete patches 2020-11-18 12:08:02 +02:00
Alexander Bokovoy
a5238c00f7 Fix build directory location for release candidates 2020-11-18 12:00:47 +02:00
Alexander Bokovoy
0d298a885e FreeIPA 4.9.0 release candidate 1 
- Update to new upstream release
- Unify most of Fedora/RHEL/Upstream spec files
 2020-11-18 11:56:37 +02:00
Adam Williamson
f5ffc4abf3 Backport #5212 for deployment failures with 389-ds-base 1.4.4.6+ 2020-10-28 15:16:06 -07:00
Alexander Bokovoy
deafacd653 Handle better upgrade of sshd_config 
Fixes: rhbz#1887928
 2020-10-13 18:54:47 +03:00
Alexander Bokovoy
45879303cf Properly handle upgrade when systemd-resolved is enabled 2020-09-29 14:04:30 +03:00
Alexander Bokovoy
ede0ac6cb6 Fix permissions of systemd-resolved configuration file 
Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
 2020-09-28 15:38:44 +03:00