mirror/userdir-ldap.git
16 years agoadd simple ud-config script for use in shell scripts
Mark Hymers [Thu, 27 Dec 2007 12:50:55 +0000 (12:50 +0000)]
add simple ud-config script for use in shell scripts

16 years agomerge
Mark Hymers [Thu, 27 Dec 2007 12:50:36 +0000 (12:50 +0000)]
merge

16 years agoSync with -common tree again
Marc 'HE' Brockschmidt [Thu, 27 Dec 2007 08:39:32 +0000 (09:39 +0100)]
Sync with -common tree again

16 years agomerge from upstream
Mark Hymers [Wed, 26 Dec 2007 22:47:26 +0000 (22:47 +0000)]
merge from upstream

16 years agoAdd 1000 to UIDs and GIDs if the ud-generate.conf contains '[UIDSHIFT]' as
Marc 'HE' Brockschmidt [Wed, 26 Dec 2007 22:44:21 +0000 (23:44 +0100)]
Add 1000 to UIDs and GIDs if the ud-generate.conf contains '[UIDSHIFT]' as
extra flag. This is useful if you want to preserve local accounts without
ID conflicts.

16 years agoMerge passwordless export fix
Marc 'HE' Brockschmidt [Wed, 26 Dec 2007 22:41:38 +0000 (23:41 +0100)]
Merge passwordless export fix

16 years agoMark that no passwords are exported also in the generated passwd file, not
Marc 'HE' Brockschmidt [Wed, 26 Dec 2007 22:38:22 +0000 (23:38 +0100)]
Mark that no passwords are exported also in the generated passwd file, not
only in the shadow file (by using a "*" as password (meaning "no password),
instead of "x" (meaning "do I look like a passwd from the nineties? Look
into /etc/shadow!")).

16 years ago* ud-arbimport: os.exit -> sys.exit
Mark Hymers [Wed, 26 Dec 2007 20:55:32 +0000 (20:55 +0000)]
* ud-arbimport: os.exit -> sys.exit

16 years ago* Remove use of deprecated functions from the string module
Mark Hymers [Wed, 26 Dec 2007 20:49:42 +0000 (20:49 +0000)]
* Remove use of deprecated functions from the string module

16 years ago* ud-useradd: Avoid a TypeError exception when constructing the template
Mark Hymers [Wed, 26 Dec 2007 18:01:19 +0000 (18:01 +0000)]
* ud-useradd: Avoid a TypeError exception when constructing the template
  filename

16 years ago* ud-userimport, ud-groupadd, ud-roleadd, ud-useradd, userdir_ldap.py:
Mark Hymers [Wed, 26 Dec 2007 17:57:58 +0000 (17:57 +0000)]
* ud-userimport, ud-groupadd, ud-roleadd, ud-useradd, userdir_ldap.py:
  Update ud-userimport to use the same objectClasses as
  ud-{user,group,role}add and abstract them out into userdir_ldap.py

16 years agoadd note about more modern slapd configs
Mark Hymers [Wed, 26 Dec 2007 16:23:13 +0000 (16:23 +0000)]
add note about more modern slapd configs

16 years agolabeledURL was removed from the schema but not the slapd.conf example
Mark Hymers [Wed, 26 Dec 2007 14:26:27 +0000 (14:26 +0000)]
labeledURL was removed from the schema but not the slapd.conf example

16 years agoMerge shadow branch
Mark Hymers [Wed, 26 Dec 2007 00:37:11 +0000 (00:37 +0000)]
Merge shadow branch

16 years agoSet shadow expiry for locked accounts
Mark Hymers [Wed, 26 Dec 2007 00:36:13 +0000 (00:36 +0000)]
Set shadow expiry for locked accounts

16 years agoFix error due to cruft from the RoleAccount patch
Marc 'HE' Brockschmidt [Tue, 25 Dec 2007 22:33:52 +0000 (23:33 +0100)]
Fix error due to cruft from the RoleAccount patch

16 years agoReally apply HE's changes.
Marc 'HE' Brockschmidt [Tue, 25 Dec 2007 17:32:43 +0000 (18:32 +0100)]
Really apply HE's changes.

16 years agoWhen not in inetd mode, detach from controlling terminal and daemonize
Stephen Gran [Tue, 25 Dec 2007 15:11:05 +0000 (15:11 +0000)]
When not in inetd mode, detach from controlling terminal and daemonize
properly.  This involves adding a -l (logfile) option to the command line
arguments, so that output will be captured somewhere.

Also add a -f (foreground) option, to preserve the previous default behavior.

16 years agoMake finger server daemonize when not in inetd mode.
Stephen Gran [Tue, 25 Dec 2007 15:09:51 +0000 (15:09 +0000)]
Make finger server daemonize when not in inetd mode.

Also add a foreground switch so that previous defalt behavior is preserved.

16 years agoReplace local copy HBaseDn of the centrally configured HostBaseDn by the
Marc 'HE' Brockschmidt [Tue, 25 Dec 2007 15:05:58 +0000 (16:05 +0100)]
Replace local copy HBaseDn of the centrally configured HostBaseDn by the
latter everywhere we use it.

16 years agoLDAP schema changes and fitting changes to ud-host:
Marc 'HE' Brockschmidt [Tue, 25 Dec 2007 14:37:29 +0000 (15:37 +0100)]
LDAP schema changes and fitting changes to ud-host:
 * Add "purpose" (multi-value field, should contain stuff like "buildd",
   "porter", ...)
 * Add "physicalHost" (used for virtual system, containing the FQDN of
   the physical host system)

16 years agoMerge usergroups patch in
Marc 'HE' Brockschmidt [Tue, 25 Dec 2007 14:32:07 +0000 (15:32 +0100)]
Merge usergroups patch in

16 years agoAllow for usergroups (ie one group per user). Leave default behaviour as it is.
Marc 'HE' Brockschmidt [Tue, 25 Dec 2007 13:06:39 +0000 (14:06 +0100)]
Allow for usergroups (ie one group per user). Leave default behaviour as it is.
Also introduce a "-n" switch (for "no automatic ids") which turns on prompting
for UID/GID. Default is now to use the DefaultGID and the first free UID.

16 years agoud-roleadd: fix role account creation.
Peter Palfrader [Tue, 25 Dec 2007 12:09:22 +0000 (13:09 +0100)]
ud-roleadd: fix role account creation.

ud-roleadd tried to put the new ldap entry - among other objectClasses - into
inetOrgPerson, which caused it to be rejected by openldap.

16 years agoBuild depend on python-support >= 0.3.
Peter Palfrader [Tue, 25 Dec 2007 10:36:47 +0000 (11:36 +0100)]
Build depend on python-support >= 0.3.

Change the build dependency on python-support to be versioned >= 0.3,
as suggested by lintian.

16 years agoChange Build-Depends-Indep to Build-Depends.
Peter Palfrader [Tue, 25 Dec 2007 10:30:46 +0000 (11:30 +0100)]
Change Build-Depends-Indep to Build-Depends.

16 years agoFix debhelper dependency.
Peter Palfrader [Tue, 25 Dec 2007 10:29:03 +0000 (11:29 +0100)]
Fix debhelper dependency.

Since we are using a debhelper compatibility level of 5 we need to
declare a versioned build dependency of >=5 on it.

16 years agoFix conffile list.
Peter Palfrader [Tue, 25 Dec 2007 10:27:39 +0000 (11:27 +0100)]
Fix conffile list.

Get rid of debian/conffiles, wich only listed files in /etc anyway.  Those
files were already being tagged as conffiles by debhelper, resulting in them
being listed twice in the resulting binary package.

16 years agoAdd userdir-ldap.schema to version control and the resulting package.
Peter Palfrader [Tue, 25 Dec 2007 10:22:37 +0000 (11:22 +0100)]
Add userdir-ldap.schema to version control and the resulting package.

Merge the addition of the schema file from the
da-tools/userdir-ldap-common bzr repositoru on alioth.
  revno: 346
  committer: Marc 'HE' Brockschmidt <he@debian.org>
  branch nick: userdir-ldap-common
  timestamp: Tue 2007-12-25 09:34:13 +0100
  message:
    Add userdir-ldap.schema to version control and the resulting package

Also, add a comment on top of the schema file that says it's now being
versioned in bzr, and update debian/changelog.

17 years agoGenerate a disabled-accounts file exported to all hosts converted-from-CVS-20071209T215300+0000
joey [Tue, 4 Sep 2007 17:11:52 +0000 (17:11 +0000)]
Generate a disabled-accounts file exported to all hosts

The goal is that Alioth can also disable accounts which have been
locked by DSA.  Currently it has no way to know if a given account is
locked or not.

17 years agofix change password variable name, too
rmurray [Thu, 16 Aug 2007 14:12:38 +0000 (14:12 +0000)]
fix change password variable name, too

17 years agofix check for \! prefix passwords in ud-mailgate
troup [Thu, 16 Aug 2007 08:56:21 +0000 (08:56 +0000)]
fix check for \! prefix passwords in ud-mailgate

17 years agochange packaging to use python-support to build for the default python version userdir-ldap-0.3.15
rmurray [Sun, 12 Aug 2007 17:40:32 +0000 (17:40 +0000)]
change packaging to use python-support to build for the default python version

17 years agochange *PK* to !, and fully implement it. remove obsolete/broken ud-killcrypt
rmurray [Sun, 12 Aug 2007 17:40:02 +0000 (17:40 +0000)]
change *PK* to !, and fully implement it.  remove obsolete/broken ud-killcrypt

17 years agoFinalise the changelog to build a package for etch debian_userdir-ldap_0-3-14 userdir-ldap-0.3.14
joey [Sat, 11 Aug 2007 18:34:06 +0000 (18:34 +0000)]
Finalise the changelog to build a package for etch

17 years agoQuery the LDAP server if no locally defined group with that name was found
joey [Sat, 11 Aug 2007 18:18:34 +0000 (18:18 +0000)]
Query the LDAP server if no locally defined group with that name was found

17 years agoAlways return an integer
joey [Sat, 11 Aug 2007 13:38:29 +0000 (13:38 +0000)]
Always return an integer

17 years agoQuery the LDAP server if no locally defined group with that name was found
joey [Sat, 11 Aug 2007 13:27:37 +0000 (13:27 +0000)]
Query the LDAP server if no locally defined group with that name was found

17 years agoReturn a real error when the group cannot be found out
joey [Sat, 11 Aug 2007 12:53:37 +0000 (12:53 +0000)]
Return a real error when the group cannot be found out

17 years agoRemoved unused and obsolete whrandom module
joey [Sat, 11 Aug 2007 10:11:55 +0000 (10:11 +0000)]
Removed unused and obsolete whrandom module

17 years agoImproved admin output
joey [Sat, 11 Aug 2007 09:59:45 +0000 (09:59 +0000)]
Improved admin output

17 years agoPatch by aba: Import the host base dn from the configuration file,
joey [Sat, 11 Aug 2007 09:36:42 +0000 (09:36 +0000)]
Patch by aba: Import the host base dn from the configuration file,
thus make ud-host useable outside of .debian.org as well

17 years agoPatch by aba: Don't export the password when [NOPASSWD] is set
joey [Sat, 11 Aug 2007 09:00:17 +0000 (09:00 +0000)]
Patch by aba: Don't export the password when [NOPASSWD] is set

17 years agoBeginning of the transition to Python in etch
joey [Sat, 23 Jun 2007 07:12:06 +0000 (07:12 +0000)]
Beginning of the transition to Python in etch

17 years agoDocument code changes
joey [Wed, 20 Jun 2007 07:04:22 +0000 (07:04 +0000)]
Document code changes

17 years agoSync older changelog entries
joey [Wed, 20 Jun 2007 07:03:40 +0000 (07:03 +0000)]
Sync older changelog entries

17 years agoRT #70: Fix SUBKEY signatures; update some error cases to more recent gpgv docs
rmurray [Mon, 4 Jun 2007 01:56:44 +0000 (01:56 +0000)]
RT #70: Fix SUBKEY signatures; update some error cases to more recent gpgv docs

17 years agoWhen checking for collisons in ud-mailgate, check for both tab and space suffixed...
troup [Mon, 9 Apr 2007 20:42:03 +0000 (20:42 +0000)]
When checking for collisons in ud-mailgate, check for both tab and space suffixed hostnames since we accept either as input.

17 years agoGenerate ssh-rsa-shadow, debianhosts and ssh_known_hosts even for untrusted hosts...
troup [Mon, 9 Apr 2007 19:58:31 +0000 (19:58 +0000)]
Generate ssh-rsa-shadow, debianhosts and ssh_known_hosts even for untrusted hosts (i.e. alioth)

17 years ago'*PK*' will allow a 'locked' account to login in certain situations, remove it for...
troup [Mon, 9 Apr 2007 19:54:29 +0000 (19:54 +0000)]
'*PK*' will allow a 'locked' account to login in certain situations, remove it for now.  We still need a way to disable accounts but not mail, but this isn't it.

17 years agoImported current file from samosa
troup [Mon, 9 Apr 2007 19:50:20 +0000 (19:50 +0000)]
Imported current file from samosa

17 years agoEstablish *PK* as mechanism for locked accounts with mail forwarding intact.
joey [Wed, 24 Jan 2007 06:08:05 +0000 (06:08 +0000)]
Establish *PK* as mechanism for locked accounts with mail forwarding intact.
No subscription to debian-private though, and no way to log in

17 years ago*** empty log message *** userdir-ldap-0.3.13
rmurray [Mon, 15 Jan 2007 22:16:53 +0000 (22:16 +0000)]
*** empty log message ***

17 years agoonly look for *LK*, and not base anything off the fingerprint when disabling mail...
rmurray [Mon, 15 Jan 2007 22:14:23 +0000 (22:14 +0000)]
only look for *LK*, and not base anything off the fingerprint when disabling mail for locked accounts

17 years agoupdates for generation of RHSRBL lists
rmurray [Sat, 30 Dec 2006 11:14:35 +0000 (11:14 +0000)]
updates for generation of RHSRBL lists

17 years agodon't create links in /var/lib/misc; they're not needed
rmurray [Fri, 29 Dec 2006 00:36:56 +0000 (00:36 +0000)]
don't create links in /var/lib/misc; they're not needed

17 years agofix domain name regex to allow - and not allow _
rmurray [Thu, 28 Dec 2006 21:09:15 +0000 (21:09 +0000)]
fix domain name regex to allow - and not allow _

17 years agonew field support for ud-info, new anti-spam related mail fields userdir-ldap-0.3.12
rmurray [Thu, 28 Dec 2006 12:41:35 +0000 (12:41 +0000)]
new field support for ud-info, new anti-spam related mail fields

17 years agoadd dns-sshfp file containing SSHFP DNS records for each host.
rmurray [Wed, 27 Dec 2006 12:51:53 +0000 (12:51 +0000)]
add dns-sshfp file containing SSHFP DNS records for each host.

18 years agoTake better care of unset attributes
joey [Thu, 20 Jul 2006 09:06:17 +0000 (09:06 +0000)]
Take better care of unset attributes

18 years agobsmtp handling updated for exim4
rmurray [Mon, 17 Jul 2006 20:59:26 +0000 (20:59 +0000)]
bsmtp handling updated for exim4

18 years agoDon't let Python abort unconditionally if a host wasn't found.
joey [Sun, 2 Jul 2006 03:10:25 +0000 (03:10 +0000)]
Don't let Python abort unconditionally if a host wasn't found.

18 years agoupdate maintainer/initial uploaders field
rmurray [Sun, 13 Nov 2005 22:50:27 +0000 (22:50 +0000)]
update maintainer/initial uploaders field

18 years ago0.3.11 userdir-ldap-0.3.11
rmurray [Sun, 13 Nov 2005 22:44:26 +0000 (22:44 +0000)]
0.3.11

18 years agodon't write bsmtp and dns entries without a keyFingerPrint.
rmurray [Sun, 13 Nov 2005 22:36:42 +0000 (22:36 +0000)]
don't write bsmtp and dns entries without a keyFingerPrint.

18 years agogenerate debianhosts file for exim and possibly other uses
rmurray [Sun, 6 Nov 2005 21:57:47 +0000 (21:57 +0000)]
generate debianhosts file for exim and possibly other uses

19 years agoThere can be only one hostname by the ldap schema, so don't allow multiple
rmurray [Thu, 13 Oct 2005 03:26:41 +0000 (03:26 +0000)]
There can be only one hostname by the ldap schema, so don't allow multiple
hostnames to be added.

19 years agoDon't spit out Python love when wrong arguments are given, better
joey [Thu, 25 Aug 2005 06:47:41 +0000 (06:47 +0000)]
Don't spit out Python love when wrong arguments are given, better
detect this and exit with a proper error message

19 years agoRemoved reference to FCNTL since it is not required anymore and the
joey [Thu, 4 Aug 2005 17:25:00 +0000 (17:25 +0000)]
Removed reference to FCNTL since it is not required anymore and the
LOCK_EX is now in fcntl (and working similar).

19 years agouse "db" alias for where to rsync from, rather than a hostname
rmurray [Tue, 26 Jul 2005 20:49:19 +0000 (20:49 +0000)]
use "db" alias for where to rsync from, rather than a hostname

19 years agoTighten the build dependencies
joey [Thu, 7 Jul 2005 08:20:46 +0000 (08:20 +0000)]
Tighten the build dependencies

19 years agoMove to sarge, i.e. depend on python 2.3
joey [Thu, 7 Jul 2005 08:19:25 +0000 (08:19 +0000)]
Move to sarge, i.e. depend on python 2.3

19 years agoAdded libnss-db to the list of dependencies
joey [Thu, 7 Jul 2005 07:58:44 +0000 (07:58 +0000)]
Added libnss-db to the list of dependencies

19 years agoInitialise the Host variable
joey [Tue, 1 Feb 2005 14:46:15 +0000 (14:46 +0000)]
Initialise the Host variable

19 years agoAdjusted symlink path for ssh_known_hosts inside chroot
joey [Tue, 25 Jan 2005 10:56:05 +0000 (10:56 +0000)]
Adjusted symlink path for ssh_known_hosts inside chroot

19 years agoSet and expor the path including /usr/sbin so that the chroot binary debian_userdir-ldap_0-3-9
joey [Tue, 25 Jan 2005 08:50:49 +0000 (08:50 +0000)]
Set and expor the path including /usr/sbin so that the chroot binary
can be found.  Args.

19 years agoRemoved the build dependency to WML since the WML part has been split off debian_userdir-ldap_0-3-8
joey [Mon, 24 Jan 2005 07:16:51 +0000 (07:16 +0000)]
Removed the build dependency to WML since the WML part has been split off

19 years agoFinalised the changelog again
joey [Mon, 24 Jan 2005 07:05:22 +0000 (07:05 +0000)]
Finalised the changelog again

19 years agoAdded ud-roleadd for adding role accounts to LDAP
joey [Sun, 23 Jan 2005 19:14:18 +0000 (19:14 +0000)]
Added ud-roleadd for adding role accounts to LDAP
(Copyright note copied from ud-useradd due to a lot of copied code)

19 years agoSplit the group dict and added nogroup
joey [Sun, 23 Jan 2005 16:35:03 +0000 (16:35 +0000)]
Split the group dict and added nogroup

19 years agoCreate ~/.gnupg if it does not exist since gpg will fail fatally otherwise
joey [Sun, 23 Jan 2005 16:00:53 +0000 (16:00 +0000)]
Create ~/.gnupg if it does not exist since gpg will fail fatally otherwise

19 years agoInspired by Andreas Barth: Only fiddle with the shadow file if it does
joey [Sun, 23 Jan 2005 15:26:41 +0000 (15:26 +0000)]
Inspired by Andreas Barth: Only fiddle with the shadow file if it does
exist and has content.  Probably not needed on .debian.org hosts.

19 years agoInspired by Andreas Barth: Adjusted type after accidential conversion
joey [Sun, 23 Jan 2005 15:21:46 +0000 (15:21 +0000)]
Inspired by Andreas Barth: Adjusted type after accidential conversion

19 years agoAdded the copyright according to the cvs log
joey [Sun, 23 Jan 2005 15:19:34 +0000 (15:19 +0000)]
Added the copyright according to the cvs log

19 years agoInspired by Andreas Barth: Switched from explicit support for
joey [Sun, 23 Jan 2005 15:17:51 +0000 (15:17 +0000)]
Inspired by Andreas Barth: Switched from explicit support for
haydn/costa to generic support via the extra attribute [UNTRUSTED]

19 years agoAdded optional support for -h host in connection with -f
joey [Sun, 23 Jan 2005 11:47:13 +0000 (11:47 +0000)]
Added optional support for -h host in connection with -f

19 years agoAdded support for printing all fingerprints of .debian.org hosts.
joey [Sun, 23 Jan 2005 11:44:21 +0000 (11:44 +0000)]
Added support for printing all fingerprints of .debian.org hosts.

CalcTempFile() is a kludge to work around a gross bug or lack in
Python prior to 2.3.  It can be implemented much more elegantly when
there is an mkstemp() function:

   from tempfile import mkstemp
   (fd, name) = mkstemp()
   os.close(fd)
   return name

19 years agoPatch by Andreas Barth: added --secret-keyring /dev/null
joey [Sun, 23 Jan 2005 09:45:50 +0000 (09:45 +0000)]
Patch by Andreas Barth: added --secret-keyring /dev/null

This is required for ud-mailgate to work with sarge as well.  The
semantics of the option --no-default-keyring of GnuPG has been changed
between woody and sarge:

--no-default-keyring
  Do not add the default keyrings to the list of keyrings.  Note that
  GnuPG will not operate without any keyrings, so if you use this
  option and do not provide alternate keyrings via --keyring or
  --secret-keyring, then GnuPG will still use the default public or
  secret keyrings.  (and won't work if they don't exist)

19 years agoFinalised the changelog
joey [Sat, 22 Jan 2005 19:18:47 +0000 (19:18 +0000)]
Finalised the changelog

19 years agoSupport for mistyped passwords
joey [Sat, 22 Jan 2005 19:18:37 +0000 (19:18 +0000)]
Support for mistyped passwords

19 years agoNotify users about unsupported SSH1 keys
joey [Sat, 22 Jan 2005 19:09:35 +0000 (19:09 +0000)]
Notify users about unsupported SSH1 keys

19 years agoCorrected patch inside the chroot directory
joey [Sat, 22 Jan 2005 18:38:17 +0000 (18:38 +0000)]
Corrected patch inside the chroot directory

19 years agoImported current file from samosa
joey [Sat, 22 Jan 2005 18:33:30 +0000 (18:33 +0000)]
Imported current file from samosa

19 years agoInstall the copyright file
joey [Sat, 22 Jan 2005 18:29:39 +0000 (18:29 +0000)]
Install the copyright file

19 years agoAdded plain copyright file
joey [Sat, 22 Jan 2005 18:19:03 +0000 (18:19 +0000)]
Added plain copyright file

19 years agoAdded support for deleting the d.net entry
joey [Sun, 16 Jan 2005 06:35:55 +0000 (06:35 +0000)]
Added support for deleting the d.net entry

19 years agoAlways perform the list output anonymously
joey [Thu, 9 Dec 2004 17:54:53 +0000 (17:54 +0000)]
Always perform the list output anonymously

19 years agoStart with the changelog
joey [Sat, 4 Dec 2004 18:07:59 +0000 (18:07 +0000)]
Start with the changelog

19 years agoCorrected spelling for labeledURI
joey [Sat, 4 Dec 2004 18:07:18 +0000 (18:07 +0000)]
Corrected spelling for labeledURI

19 years agoOnly fiddle inside the chroot if the makedb program exists
joey [Tue, 23 Nov 2004 10:42:16 +0000 (10:42 +0000)]
Only fiddle inside the chroot if the makedb program exists