- Aug 17, 2020
-
-
Rafael Guterres Jeffman authored
IPA CLI has an option `name_from_ip` that provide a name for a zone from the reverse IP address, so that it can be used to, for example, manage PTR DNS records. This patch adds a similar attribute to ipadnszone module, where it will try to find the proper zone name, using DNS resolve, or provide a sane default, if a the zone name cannot be resolved. The option `name_from_ip` must be used instead of `name` in playbooks, and it is a string, and not a list. A new example playbook was added: playbooks/dnszone/dnszone-reverse-from-ip.yml A new test playbook was added: tests/dnszone/test_dnszone_name_from_ip.yml
-
Sergio Oliveira authored
Fixed symlinks to be not absolute
-
Thomas Woerner authored
Fix ipavault `salt` update.
-
Sergio Oliveira authored
Fix `allow_create_keytab_host` in service module.
-
- Aug 14, 2020
-
-
Thomas Woerner authored
Missing admin passwords in location module.
-
Rafael Guterres Jeffman authored
Tests for module ipalocation failed due to missing ipaadmin_password. Added the variable to the playbooks, and also fixed the examples and documentation. Some playbooks had identation fixed to two spaces instead of one for consistency with other modules.
-
Rafael Guterres Jeffman authored
A test was failing due to use of old ipavault module return structure and some places on the documentation were alse referring to it. All ocurrences were fixed.
-
Rafael Guterres Jeffman authored
-
Rafael Guterres Jeffman authored
Modify and add tests to verify that a password change has the correct effect on ipavault.
-
Rafael Guterres Jeffman authored
When modifying an existing vault to change the value of `salt`, the password must also change. It is fine to "change" the password to the same value, thus only changing the salt value.
-
Rafael Guterres Jeffman authored
The generation of a random salt, when one was not provided, was in the wrong place and being generated too late to be used properly. Also, the generation of the value was duplicated.
-
Rafael Guterres Jeffman authored
In some scenarios, the value of the vault type is returned as a tuple, rather than a string, this made some changes to existing vault to fail. With this change, the vault type is correctly retrieved, if it was not provided by the user.
-
Rafael Guterres Jeffman authored
New location management module
-
- Aug 13, 2020
-
-
Thomas Woerner authored
Add support for parameter `rename` on ipahostgroup.
-
Thomas Woerner authored
Modified return value for ipavault module.
-
Thomas Woerner authored
Replace `host` to `user` in module ipauser on return value documentation
-
Thomas Woerner authored
Fixed error msgs on FreeIPABaseModule subclasses
-
Thomas Woerner authored
Allow to manage multiple dnszone entries.
-
Rafael Guterres Jeffman authored
New delegation management module
-
Rafael Guterres Jeffman authored
New selfservice management module
-
Thomas Woerner authored
There is a new location management module placed in the plugins folder: plugins/modules/ipalocation.py The location module allows to ensure presence or absence of locations. Here is the documentation for the module: README-location.md New example playbooks have been added: playbooks/location/location-absent.yml playbooks/location/location-present.yml New tests for the module: tests/location/test_location.yml
-
Thomas Woerner authored
There is a new selfservice management module placed in the plugins folder: plugins/modules/ipaselfservice.py The selfservice module allows to ensure presence and absence of selfservices and manage selfservice attributes. Here is the documentation for the module: README-selfservice.md New example playbooks have been added: playbooks/selfservice/selfservice-absent.yml playbooks/selfservice/selfservice-present.yml playbooks/selfservice/selfservice-member-absent.yml playbooks/selfservice/selfservice-member-present.yml New tests for the module: tests/selfservice/test_selfservice.yml
-
Thomas Woerner authored
There is a new delegation management module placed in the plugins folder: plugins/modules/ipadelegation.py The delegation module allows to ensure presence and absence of delegations and manage delegation attributes. Here is the documentation for the module: README-delegation.md New example playbooks have been added: playbooks/delegation/delegation-absent.yml playbooks/delegation/delegation-present.yml playbooks/delegation/delegation-member-absent.yml playbooks/delegation/delegation-member-present.yml New tests for the module: tests/delegation/test_delegation.yml
-
Jeffrey van Pelt authored
Fixed symlinks to be not absolute, which confuses 'ansible-galaxy collection build' on other systems
-
- Aug 12, 2020
-
-
Rafael Guterres Jeffman authored
Modify old service module tests to use setup and cleanup include files to make test environment more consistent.
-
- Aug 11, 2020
-
-
Rafael Guterres Jeffman authored
The attribute `allow_retrieve_keytab_host` was not working due to wrong processing of the input and verification if the values should be updated. Both the issues are fixed by this change. Tests were added to better verify service keytab members.
-
Rafael Guterres Jeffman authored
The ipavault module was returning a single string value when retrieving data. To keep consistency with other modules, it should return a dict with the `data` variable in it. This change modifies the result of ipavault to be a dict and also fixes relevant tests, examples and documentation.
-
- Aug 10, 2020
-
-
Rafael Guterres Jeffman authored
-
Rafael Guterres Jeffman authored
FreeIPA 4.8.7 introduced an option to rename an existing hostgroup. This patch adds support for renaming hostgroups if the option is available on installed IPA version. A new state `renamed` and a new option `rename` (alias: `new_name`) was added to module `ipahostgroup` to allow renaming of host groups. The implemented behavior is: * Rename if `name` exists and `rename` doesn't. * Do nothing if `name` does not exist and `rename` does, or if `name` equals to `rename`. (result.changed is False) * Fail if neither or both `name` and `rename` exist.
-
- Aug 06, 2020
-
-
Sergio Oliveira Campos authored
This PR allow ipadnszone module to ensure that multiple dns zones are absent at once, to be consistent with other ansible-freeipa modules. To fix this issue, it was required that custom arguents must be passed using keyword arguments so that `get_ipa_command_args()` is kept generic.
-
Sergio Oliveira authored
Fix some documentation issues.
-
- Aug 05, 2020
-
-
Rafael Guterres Jeffman authored
Replaced occurrences of `service` where `role` was expected, in both module source code and module README.
-
Rafael Guterres Jeffman authored
The attribute `skip_host_check` was using dashes instead of underscores, and the certificate examples could not be used directly due to formatting. These changes fix both issues.
-
Rafael Guterres Jeffman authored
This change fixes a wrong parameter name in the documentation of RESULT_VALUES, and also provide a correct YAML snippet to ensure presence of an asymmetric vault with a formatted private key.
-
- Aug 03, 2020
-
-
Sergio Oliveira Campos authored
When a fail_json is called a SystemExit exeception is raised. Since the FreeIPABaseModule has an internal context manager to deal with exceptions this ContextManager captures the SystemExit. After dealing destroying the kinit session the SystemExit must be raised again to allow the fail_json to work properly.
-
- Jul 31, 2020
-
-
Sergio Oliveira authored
Fix service tests.
-
- Jul 30, 2020
-
-
Rafael Guterres Jeffman authored
The name "www.ansible.com" was used as a host, but this required that DNS forwarding is enabled and configured to test serivces for hosts that have an IP address but are not host objects in IPA. This change set a a host name that lies in the testing domain, and has an IP address defined, buth is not added as a host object, so the forwarding DNS configuration is not needed for this test.
-
Rafael Guterres Jeffman authored
-
Rafael Guterres Jeffman authored
-
Rafael Guterres Jeffman authored
-