shanks / freeipa

Forked from freeipa 5 years ago
Clone
Source Code
GIT

1c7771f Retrieve certificate subject base directly instead of ipa-join

2 files Authored by rcritten 5 years ago, Committed by frenaud 5 years ago,
raw patch tree parent
2 files changed. 18 lines added. 95 lines removed.
client/ipa-join.c
file modified
+4 -88
ipaclient/install/client.py
file modified
+14 -7 
    Retrieve certificate subject base directly instead of ipa-join
    
    The subject base is used as a fallback to find the available
    CA certificates during client enrollment if the LDAP connection
    fails (e.g. due to new client connecting to very old server) and
    for constructing the subject if a certificate is requested.
    
    raw=True is passed to config-show in order to avoid parsing
    the server roles which will fail because the services aren't
    marked as enabled until after the client installation is
    successful on a master.
    
    ipa-join providing the subject base via stderr was fragile and
    would cause client enrollment to fail if any other output was
    included in stderr.
    
    https://pagure.io/freeipa/issue/7674
    
    Signed-off-by: Rob Crittenden <rcritten@redhat.com>
    Reviewed-By: Christian Heimes <cheimes@redhat.com>
file modified
+4 -88
file modified
+14 -7
Powered by Pagure 5.14.1
DocumentationFile an IssueAboutSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.