[Freeipa-devel] [PATCH 2 of 7] Small refactor of dsinstance.config_dirname()

Rob Crittenden rcritten at redhat.com
Fri Jan 25 19:14:45 UTC 2008 

I'm not sure about this one. I think we purposely chose to link the 
serverid and the realm name when we switched from using a GUID.

Simo, do you have any issues with this? You were more involved in that 
than I was.

rob

Mark McLoughlin wrote:
> # HG changeset patch
> # User Mark McLoughlin <markmc at redhat.com>
> # Date 1201003079 0
> # Node ID 88b7b4b3b16ddf1770ab6ecf3f43b39b0d97fe63
> # Parent  8fea038a7fc9219cacad0234ac7f124fb206caad
> Small refactor of dsinstance.config_dirname()
> 
> If, in future, we change the server ID so that it's not
> derived from the realm name, there's a fair few places
> that need to be changed.
> 
> Make that easier by having config_dirname() take the
> server ID rather than the realm name. That makes sense
> anyway so we don't have to realm_to_serverid() so
> much.
> 
> Signed-off-by: Mark McLoughlin <markmc at redhat.com>
> 
> diff -r 8fea038a7fc9 -r 88b7b4b3b16d ipa-server/ipaserver/dsinstance.py
> --- a/ipa-server/ipaserver/dsinstance.py	Tue Jan 22 08:03:06 2008 +0000
> +++ b/ipa-server/ipaserver/dsinstance.py	Tue Jan 22 11:57:59 2008 +0000
> @@ -48,11 +48,11 @@ def realm_to_serverid(realm_name):
>  def realm_to_serverid(realm_name):
>      return "-".join(realm_name.split("."))
>  
> -def config_dirname(realm_name):
> -    return "/etc/dirsrv/slapd-" + realm_to_serverid(realm_name) + "/"
> -
> -def schema_dirname(realm_name):
> -    return config_dirname(realm_name) + "/schema/"
> +def config_dirname(serverid):
> +    return "/etc/dirsrv/slapd-" + serverid + "/"
> +
> +def schema_dirname(serverid):
> +    return config_dirname(serverid) + "/schema/"
>  
>  def erase_ds_instance_data(serverid):
>      try:
> @@ -198,13 +198,13 @@ class DsInstance(service.Service):
>  
>      def __add_default_schemas(self):
>          shutil.copyfile(ipautil.SHARE_DIR + "60kerberos.ldif",
> -                        schema_dirname(self.realm_name) + "60kerberos.ldif")
> +                        schema_dirname(self.serverid) + "60kerberos.ldif")
>          shutil.copyfile(ipautil.SHARE_DIR + "60samba.ldif",
> -                        schema_dirname(self.realm_name) + "60samba.ldif")
> +                        schema_dirname(self.serverid) + "60samba.ldif")
>          shutil.copyfile(ipautil.SHARE_DIR + "60radius.ldif",
> -                        schema_dirname(self.realm_name) + "60radius.ldif")
> +                        schema_dirname(self.serverid) + "60radius.ldif")
>          shutil.copyfile(ipautil.SHARE_DIR + "60ipaconfig.ldif",
> -                        schema_dirname(self.realm_name) + "60ipaconfig.ldif")
> +                        schema_dirname(self.serverid) + "60ipaconfig.ldif")
>  
>      def __restart_instance(self):
>          try:
> @@ -252,7 +252,7 @@ class DsInstance(service.Service):
>          self.__ldap_mod("master-entry.ldif", self.sub_dict)
>  
>      def __enable_ssl(self):
> -        dirname = config_dirname(self.realm_name)
> +        dirname = config_dirname(self.serverid)
>          ca = certs.CertDB(dirname)
>          if self.pkcs12_info:
>              ca.create_from_pkcs12(self.pkcs12_info[0], self.pkcs12_info[1])
> @@ -296,11 +296,11 @@ class DsInstance(service.Service):
>  
>      def __certmap_conf(self):
>          shutil.copyfile(ipautil.SHARE_DIR + "certmap.conf.template",
> -                        config_dirname(self.realm_name) + "certmap.conf")
> +                        config_dirname(self.serverid) + "certmap.conf")
>  
>      def change_admin_password(self, password):
>          logging.debug("Changing admin password")
> -        dirname = config_dirname(self.realm_name)
> +        dirname = config_dirname(self.serverid)
>          if ipautil.dir_exists("/usr/lib64/mozldap"):
>              app = "/usr/lib64/mozldap/ldappasswd"
>          else:
> diff -r 8fea038a7fc9 -r 88b7b4b3b16d ipa-server/ipaserver/httpinstance.py
> --- a/ipa-server/ipaserver/httpinstance.py	Tue Jan 22 08:03:06 2008 +0000
> +++ b/ipa-server/ipaserver/httpinstance.py	Tue Jan 22 11:57:59 2008 +0000
> @@ -130,7 +130,7 @@ class HTTPInstance(service.Service):
>              print "Updating %s failed." % NSS_CONF
>  
>      def __setup_ssl(self):
> -        ds_ca = certs.CertDB(dsinstance.config_dirname(self.realm))
> +        ds_ca = certs.CertDB(dsinstance.config_dirname(dsinstance.realm_to_serverid(self.realm)))
>          ca = certs.CertDB(NSS_DIR)
>          ds_ca.cur_serial = 2000
>          ca.create_from_cacert(ds_ca.cacert_fname)
> @@ -144,7 +144,7 @@ class HTTPInstance(service.Service):
>          prefs_fd.close()                
>  
>          # The signing cert is generated in __setup_ssl
> -        ds_ca = certs.CertDB(dsinstance.config_dirname(self.realm))
> +        ds_ca = certs.CertDB(dsinstance.config_dirname(dsinstance.realm_to_serverid(self.realm)))
>          ca = certs.CertDB(NSS_DIR)
>  
>          # Publish the CA certificate
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 3245 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20080125/4077847a/attachment.bin>

More information about the Freeipa-devel mailing list