[Freeipa-devel] [PATCH] Use more krb
Simo Sorce
ssorce at redhat.com
Mon Oct 1 17:57:21 UTC 2007
On Mon, 2007-10-01 at 09:40 -0700, Kevin McCarthy wrote:
> Simo Sorce wrote:
> > This patch changes a bit of code to rely more on kerberos.
> >
> > It also changes ipa-adduser to something I think is a more useful
> > workflow, it does not require an email for example as we don't need it.
> > Instead it allows passing a principal name in case you need to create
> > specific one or want to avoid conflicts with an exiting one.
> >
> > This patch also removes some classes we don't want to use by default for
> > users.
> >
> > Note: this patch may not apply cleanly as a pull from upstream after the
> > commit required me a merge. I have the merge patch in my tree so just
> > ack/nack it and I will push both the patch and the merge patch at the
> > same time.
>
> I hadn't put the password setting code into Add User yet. Should I be
> prompting them for the principal?
I don't think you need to prompt, but there should be an option to
change it from the default at user creation if necessary.
> If not, how shall I call modifyPassword after creating the user? I
> suppose I can query the user back after creating it to get the
> principal.
If you can't keep around the principal name you generated, yes.
Simo.
More information about the Freeipa-devel
mailing list