- Sep 13, 2023
-
-
Thomas Woerner authored
The type was given twice for state and action argument specs. This has been fixed.
-
Thomas Woerner authored
Fixes left over FQDN issue for include_tasks.
-
- Sep 11, 2023
-
-
Thomas Woerner authored
spec file: Updated list of modules
-
- Sep 08, 2023
-
-
Rafael Guterres Jeffman authored
Current spec file template was missing certificate, netgroup and idview modules.
-
Thomas Woerner authored
Bump Ansible version to 2.13
-
Rafael Guterres Jeffman authored
As ansible-freeipa roles does not support Ansible 2.8, bump the collection version to the currently oldest supported Ansible version available, 2.13.
-
Rafael Guterres Jeffman authored
As ansible-freeipa roles do not support version 2.8 anymore, change the minimum supported version to 2.13, which is the currently minimum available and supported Ansible version. This patch fixes documentation on all plugin READMEs, spec file and module templates.
-
Rafael Guterres Jeffman authored
Currently, the minimum supported Ansible version is 2.13, and ansible-freeipa roles does not work with any version less than 2.9, altough ansible-freeipa documentation states that the minimum version to use is 2.8. This patch fixes documentation and roles metadata to require that the minimum Ansible version used is 2.13.
-
- Sep 07, 2023
-
-
Thomas Woerner authored
Updated supported distros
-
Thomas Woerner authored
upstream ci: fix sanity test ansible lint failures
-
Thomas Woerner authored
ipacert: Fix revocation example playbook on README
-
- Sep 06, 2023
-
-
Rafael Guterres Jeffman authored
New idview management module.
-
Thomas Woerner authored
There is a new idview management module placed in the plugins folder: plugins/modules/ipaidview.py The idview module allows to ensure presence and absence of idviews and idview host members. Here is the documentation for the module: README-idview.md New example playbooks have been added: playbooks/idview/idview-absent.yml playbooks/idview/idview-host-applied.yml playbooks/idview/idview-host-unapplied.yml playbooks/idview/idview-present.yml New tests for the module can be found at: tests/idview/test_idview.yml tests/idview/test_idview_client_context.yml
-
- Sep 05, 2023
-
-
Rafael Guterres Jeffman authored
Currently, there is a hard coded timeout in galaxy-importer that prevents larger collections to execute the ansible-lint step [1]. This patch modifies the calls to ansible-lint on development tools and upstream CI to use the same arguments as galaxy-importer and disables the execution of the ansible-lint step for the Ansible's sanity test. Requested ansible-lint version for tools is also updated, as a more recent one is required. This change will not allow development using an environment using Python 2.7, due to newer ansible-lint requirements. Roles and modules tests against target nodes using Python 2.7 is still possible. [1]: https://github.com/ansible/galaxy-importer/pull/231
-
- Aug 24, 2023
-
-
Rafael Guterres Jeffman authored
The revocation example playbook on README was wrong as it didn't have a 'reason' set, and the parameter must be used with 'state: revoked'. This patch fixes the example and adds a new example using a reason mnemonic instead of a reason number.
-
- Aug 23, 2023
-
-
Rafael Guterres Jeffman authored
Updated all roles README files to add supported distros, as CentOS Stream is supported (both 8 and 9) and also Debian clients.
-
- Jul 24, 2023
-
-
Thomas Woerner authored
ci: Increase verbosity for Ansible playbook runs
-
- Jul 21, 2023
-
-
Rafael Guterres Jeffman authored
ansible_freeipa_module: Fix ipa_command_invalid_param_choices
-
Rafael Guterres Jeffman authored
Some test failures requires more information than just the playbook simple output. By increasing verbosity, the used parameters and the failed line will be visible in the test error report, making it easier to identify, reproduce and fix the issue.
-
Thomas Woerner authored
Fix ipa_command_invalid_param_choices for IPA 4.6 (RHEL-7) - krbprincipalauthind in host_add does not have choices defined - krbprincipalauthind in service_add does not have choices defined api.Command[command].params[name].cli_metavar returns "STR" and ast.literal_eval failes with a ValueError "malformed string". There is no way to verify that the given values are valid or not in this case. The check is done later on while applying the change with host_add, host_mod, service_add and service_mod.
-
- Jul 20, 2023
-
-
Thomas Woerner authored
ipauser: Support for External IdP attributes.
-
- Jul 19, 2023
-
-
Rafael Guterres Jeffman authored
Add support for 'idp' and 'idp_user_id' to ipauser plugin. FreeIPA 4.10.0 is required for both attributes.
-
Rafael Guterres Jeffman authored
Update authtypes authind readmes
-
Thomas Woerner authored
The parameter user_auth_type has been updated in FreeIPA. The choices pkinit, hardened and idp have been missing and are now added.
-
Thomas Woerner authored
The parameter auth_ind has been updated in FreeIPA. The choice idp have been missing and is now added.
-
Thomas Woerner authored
The parameter auth_ind has been updated in FreeIPA. The choice idp have been missing and is now added.
-
Thomas Woerner authored
The parameter user_auth_type has been updated in FreeIPA. The choices pkinit, hardened and idp have been missing and are now added.
-
Thomas Woerner authored
ipaserver: Update README with detailed Ubuntu support
-
Rafael Guterres Jeffman authored
Update authtypes authind
-
Thomas Woerner authored
ipaautomountmap: add support for indirect maps
-
Rafael Guterres Jeffman authored
Ubuntu does not have a FreeIPA server package since version 20.04. As versions 16.04 (Xenial Xerus) and 18.04 (Bionic Beaver) will be supported by Canonical until 2026 and 2028, repectively, we should keep existing support for both versions in the ipaserver, ipareplica and ipabackup roles until them. This patch changes documentation to reflect that only those versions are supported.
-
Rafael Guterres Jeffman authored
Indirect maps were not supported by ansible-freeipa ipaautomountmap. This patch adds support for adding indirect automount maps using the "parent" and "mount" parameters, if the map do not yet exist. An existing map cannot be modified. The "parent" parameter must match an existing automount map, and the "mount" parameter is required if "parent" is used. A new example playbook can be found at: playbooks/automount/automount-map-indirect-map.yml A new test playbook was added to test the feature: tests/automount/test_automountmap_indirect.yml
-
Thomas Woerner authored
The parameter user_auth_type has been updated in FreeIPA. The choices pkinit, hardened and idp have been missing and are now added. An additional check was added to verify that the values of the user_auth_type list are valid for the used IPA version.
-
Thomas Woerner authored
The parameter auth_ind has been updated in FreeIPA. The choice idp have been missing and is now added. An additional check was added to verify that the values of the auth_ind list are valid for the used IPA version.
-
Thomas Woerner authored
The parameter auth_ind has been updated in FreeIPA. The choice idp have been missing and is now added. An additional check was added to verify that the values of the auth_ind list are valid for the used IPA version.
-
Thomas Woerner authored
The parameter user_auth_type has been updated in FreeIPA. The choices pkinit, hardened and idp have been missing and are now added. An additional check was added to verify that the values of the user_auth_type list are valid for the used IPA version.
-
Thomas Woerner authored
New IPAAnsibleModule.ipa_command_invalid_param_choices method to return invalid parameter choices for an IPA command. This is needed to verify for example if userauthtype and authind are supporting the idp value.
-
- Jul 17, 2023
-
-
Thomas Woerner authored
utils/run-tests.sh: Install Ansible collections on virtual environment
-
Thomas Woerner authored
ipauser: Add support for SMB attributes.
-
- Jul 15, 2023
-
-
Rafael Guterres Jeffman authored
When runing tests using 'utils/run-tests.sh' from inside an existing Python virtual environment the Ansible collections are not installed due to the order of execution of the script. On a machine that does not have the 'containers.*' collection the test fails as there is no container connector available. This patch moves the section that installs Ansible collections to run after the virtual environment is configured, and then install the collections (usually, only 'containers.podman'), allowing the tests to be executed.
-