[Freeipa-devel] [PATCH] Changes to use a single database for dogtag and IPA

[Ade Lee]

Changes to use a single database for dogtag and IPA
    
    New servers that are installed with dogtag 10 instances will use
    a single database instance for dogtag and IPA, albeit with different
    suffixes.  Dogtag will communicate with the instance through a
    database user with permissions to modify the dogtag  suffix only.
    This user will authenticate using client auth using the subsystem cert
    for the instance.
    
    This patch includes changes to allow the creation of masters and clones
    with single ds instances.

I have tested being able to create a master and a clone using f17 and
dogtag 10.  Note that you will need to use the latest builds on the
dogtag repo to get some changes that were checked in today.  We'll kick
off another official f18 dogtag build in a day or so.

This is a pretty big change - so I expect many issues to come up as
things get tested.  But as this will take awhile to get resolved, its
better to get this out for review as fast as possible.

Happy reviewing.

Ade 


-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0001-Changes-to-use-a-single-database-for-dogtag-and-IPA.patch
Type: text/x-patch
Size: 32646 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20120919/6d1b38fb/attachment.bin>