URL: https://github.com/freeipa/freeipa/pull/1843
Author: frasertweedale
Title: #1843: Allow issuing certificates with IP addresses in subjectAltName (ftweedal)
Action: opened
PR body:
"""
Continuation of https://github.com/freeipa/freeipa/pull/1700 by @ipilcher,
adding commits by @ftweedal.
Please keep both PRs open for the time being.
"""
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/1843/head:pr1843
git checkout pr1843
URL: https://github.com/freeipa/freeipa/pull/1353
Author: tiran
Title: #1353: Add script to regenerate Custodia keys and config
Action: opened
PR body:
"""
/usr/libexec/ipa/ipa-custodia-regen can be used to recover from broken
ipa-custodia keys and configuration. It removes existing config and
server key files, regenerates new files and uploads the new public keys
to LDAP.
https://pagure.io/freeipa/issue/6893
Signed-off-by: Christian Heimes <cheimes(a)redhat.com>
"""
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/1353/head:pr1353
git checkout pr1353
URL: https://github.com/freeipa/freeipa/pull/1427
Author: justin-stephenson
Title: #1427: Skip zone overlap check with auto-reverse
Action: opened
PR body:
"""
Skip the existing reverse zone overlap check during DNS installation
when both `--auto-reverse` and `--allow-zone-overlap` arguments are
provided together.
https://pagure.io/freeipa/issue/7239
"""
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/1427/head:pr1427
git checkout pr1427
URL: https://github.com/freeipa/freeipa/pull/1559
Author: tiran
Title: #1559: test_dnssec: re-add named-pkcs11 workarounds
Action: opened
PR body:
"""
DNSSEC tests starrted to fail again, probably due to a bug in
some underlaying component.
This reverts commit 8bc677512296a7e94c29edd0c1a96aa7273f352a
and makes the xfail test check less strict - it will no longer
mark the test suite red if it passes.
Related https://pagure.io/freeipa/issue/5348
Clone of @tomaskrizek PR #973
"""
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/1559/head:pr1559
git checkout pr1559
URL: https://github.com/freeipa/freeipa/pull/1793
Author: abbra
Title: #1793: [WIP] ipa tests: Set default TTL for the IPA zone to 1 second
Action: opened
PR body:
"""
When running IPA tests, a default TTL for the zone should be set
very low to allow get rid of timeouts in the tests. Zone updates should
be propagated to the clients as soon as possible.
This is not something that should be used in production so the change is
done purely at install time within the tests. As zone information is
replicated, we only modify it when creating a master with integrated
DNS.
This change should fix a number of DNSSEC-related tests where default
TTL is longer than what a test expects and a change of DNSSEC keys
never gets noticed by the BIND. As result, DNSSEC tests never match
their expected output with what they received from the BIND.
"""
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/1793/head:pr1793
git checkout pr1793