freeipa

Clone
Source Code
GIT

a3934a2 Use new LDAPClient constructors

12 files Authored by cheimes 5 years ago, Committed by rcritten 5 years ago,
raw patch tree parent
12 files changed. 55 lines added. 85 lines removed.
install/migration/migration.py
file modified
+4 -1
ipaclient/install/client.py
file modified
+1 -2
ipaclient/install/ipa_certupdate.py
file modified
+1 -2
ipaserver/dcerpc.py
file modified
+4 -3
ipaserver/install/dogtaginstance.py
file modified
+4 -4
ipaserver/install/dsinstance.py
file modified
+20 -37
ipaserver/install/ipa_backup.py
file modified
+1 -2
ipaserver/install/ipa_restore.py
file modified
+1 -2
ipaserver/install/ldapupdate.py
file modified
+6 -2
ipaserver/install/replication.py
file modified
+11 -26
ipatests/pytest_ipa/integration/host.py
file modified
+1 -2
ipatests/test_install/test_updates.py
file modified
+1 -2 
    Use new LDAPClient constructors
    
    Replace get_ldap_uri() + LDAPClient() with new LDAPClient constructors
    like LDAPClient.from_realm().
    
    Some places now use LDAPI with external bind instead of LDAP with simple
    bind. Although the FQDN *should* resolve to 127.0.0.1 / [::1], there is
    no hard guarantee. The draft
    https://tools.ietf.org/html/draft-west-let-localhost-be-localhost-04#section-5.1
    specifies that applications must verify that the resulting IP is a
    loopback API. LDAPI is always local and a bit more efficient, too.
    
    The simple_bind() method also prevents the caller from sending a
    password over an insecure line.
    
    Signed-off-by: Christian Heimes <cheimes@redhat.com>
    Reviewed-By: Rob Crittenden <rcritten@redhat.com>
file modified
+4 -1
file modified
+1 -2
file modified
+1 -2
file modified
+4 -3
file modified
+4 -4
file modified
+20 -37
file modified
+1 -2
file modified
+1 -2
file modified
+6 -2
file modified
+11 -26
file modified
+1 -2
file modified
+1 -2
Powered by Pagure 5.13.3
DocumentationFile an IssueAboutSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.