freeipa/ansible-freeipa v0.1.11

ansible-freeipa-0.1.11

on GitHub

Changes in 0.1.11:

• Fixes attempt to create rules with members when category is all.
• Reformatted README for better presentation on 80 column terminals.
• Fixes error handling on dnsconfig module.
• Add support for missing attributes, and enhance ipaconfig tests.
• Split vault tests in different files.
• Add state retrieved to ipavault to retrieve vault stored data.
• Fixes password behavior on Vault module.
• ipahostgroup: Add support for group membership management
• New dnsrecord management module.
• tests/config/test_config.yml: Fix main name
• Fix KDC certificate permissions
• Test ipaserver installation without CA
• Test ipareplicas installation without CA
• Remove temporary certificates after installation is completed
• Install iparelicas without CA
• ipagroup: Add support for group membership management
• ipahostgroup: Add support for group membership management
• Add support for service-add-smb.
• Add support for FreeIPA API service_del continue option.
• Removed invalid state enabled from available choices.
• Allow clearing auth_ind by using "" as input value.
• Fix error message when adding a service without principal.
• Allow the use of multiple values with auth_ind variable.
• Fixes message when variable cannot be used in a given state action.
• Add support for service-add-smb.
• Add support for FreeIPA API service_del continue option.
• Removed invalid state enabled from available choices.
• Allow clearing auth_ind by using "" as input value.
• Fix error message when adding a service without principal.
• Allow the use of multiple values with auth_ind variable.
• Fixes message when variable cannot be used in a given state action.
• Fixes no_log warning for update_password.
• Fixes password behavior on Vault module.
• There is a new config management module placed in the plugins folder:
• library/ipaserver_setup_ca: Use x509 IPA upstream code for pkcs12 files
• ipaserver/tasks/install.yml: Always remove temporary pkcs12 copies
• library/ipaserver_test: Revert to IPA upstream code for pkcs12 files
• ansible_ipa_server: New functions encode_certificate and decode_certificate
• ca-less: No pre-generated certificates, generate them for each run
• Generate mock certificates for ca-less installation
• Install ipaserver without ca
• Fixes host absent when DNS zone is not found.
• Fixes no_log warning for update_password.
• Add missing attribute services to vault module.
• Fix all tests entry point
• Added pytests as test entrypoint
• Update README.md
• Update README.md
• Fixes behavior of ipavault when no user, service or shared is given.
• ipauser: Fix certmapdata, add missing certmapdata data option
• ansible_freeipa_module: New function api_check_command
• ansible_freeipa_module: New function DN_x500_text
• ansible_freeipa_module: New function load_cert_from_str
• ipagroup: Add lacking service check for group_remove_member with old IPA
• tests/host/test_hosts_principal.yml: Remove dudplicate hosts tag
• ipahost: Use dnsrecord_show instead of dnsrecord_find command
• ipahost: Honour update_password also for random
• ipauser: Use encode_certificate for certificates in find_user result
• Do not remove member attributes while updating others
• Fixes usage of Kerberos credentials on Vault module.
• Doc string improvements
• Added azure-pipelines check
• Fixed typo
• Adjusted doc strings to follow PEP 257.
• Made code flake8 friendly
• ansible_freeipa_module: Set KRB5CCNAME for api_connect (non root)
• Fixes removal of all from HBAC rule categories.
• Fixes removal of all from sudorule categories.