[Freeipa-users] Wildcard DNS record supported ?

Rob Crittenden rcritten at redhat.com
Sun May 25 18:29:08 UTC 2014 

Matt . wrote:
> Indeed!

Look for the regex in ipalib/plugins/dns.py . I'd suspect you'll need to
modify the hostname validator, validate_hostname, in ipalib/util.py.

Be wary of edge cases.

For instructions on testing, see http://www.freeipa.org/page/Testing

For how to contribute the patch, see http://www.freeipa.org/page/Contribute

regards

rob

> 
> 
> 2014-05-23 20:33 GMT+02:00 Dmitri Pal <dpal at redhat.com
> <mailto:dpal at redhat.com>>:
> 
>     On 05/23/2014 09:52 AM, Matt . wrote:
>>     OK, but I wonder where I can remove that * check in IPA... it must
>>     be somewhere in a template I think.
> 
>     You mean you want to contribute to the IPA code to change the
>     validator to allow wildcard support and looking for a pointer to a code?
> 
> 
>>
>>
>>     2014-05-23 15:50 GMT+02:00 Petr Spacek <pspacek at redhat.com
>>     <mailto:pspacek at redhat.com>>:
>>
>>         On 23.5.2014 15:46, Martin Kosek wrote:
>>
>>             On 05/23/2014 03:44 PM, Petr Spacek wrote:
>>
>>                 On 23.5.2014 13:59, Matt . wrote:
>>
>>                     Hi Martin,
>>
>>                     I have seen it indeed and discusses on #freeipa
>>
>>                     Is it not possible to install bind-dyndb-ldap 4.0
>>                     manually on CentOS 6.5 ?
>>
>>
>>                 In theory yes, but nobody tested that.
>>
>>                 Please note that new bind-dyndb-ldap will allow you to
>>                 use wildcards but you
>>                 will have to use use LDAP editor to add wildcard
>>                 records manually. Old FreeIPA
>>                 will refuse to add wildcard records (because the
>>                 validator is not inside
>>                 bind-dyndb-ldap but inside FreeIPA).
>>
>>                 Anyway, feel free to download
>>                 http://kojipkgs.fedoraproject.org//packages/bind-dyndb-ldap/4.3/1.fc20/src/bind-dyndb-ldap-4.3-1.fc20.src.rpm
>>
>>                 and rebuild it on CentOS 6.5.
>>
>>                 You will have to lower required version of BIND in
>>                 SPEC file. Please note that
>>                 it is completely untested.
>>
>>                 Let me know if you have any further questions.
>>
>>                 Petr Spacek
>>
>>
>>             Wouldn't Matt also need to rebuild BIND and it's
>>             libraries? bind-dyndb-ldap and
>>             BIND are pretty bound together.
>>
>>
>>         AFAIK rebuilding bind-dyndb-ldap should be enough.
>>         Bind-dyndb-ldap 4.x is not tested with BIND < 9.9.x but it
>>         could work , in theory...
>>
>>         -- 
>>         Petr^2 Spacek
>>
>>
>>         _______________________________________________
>>         Freeipa-users mailing list
>>         Freeipa-users at redhat.com <mailto:Freeipa-users at redhat.com>
>>         https://www.redhat.com/mailman/listinfo/freeipa-users
>>
>>
>>
>>
>>     _______________________________________________
>>     Freeipa-users mailing list
>>     Freeipa-users at redhat.com <mailto:Freeipa-users at redhat.com>
>>     https://www.redhat.com/mailman/listinfo/freeipa-users
> 
> 
>     -- 
>     Thank you,
>     Dmitri Pal
> 
>     Sr. Engineering Manager IdM portfolio
>     Red Hat, Inc.
> 
> 
>     _______________________________________________
>     Freeipa-users mailing list
>     Freeipa-users at redhat.com <mailto:Freeipa-users at redhat.com>
>     https://www.redhat.com/mailman/listinfo/freeipa-users
> 
> 
> 
> 
> _______________________________________________
> Freeipa-users mailing list
> Freeipa-users at redhat.com
> https://www.redhat.com/mailman/listinfo/freeipa-users
>

More information about the Freeipa-users mailing list