Bug 1131877 – Registering one IPA server with the browser removes entries for another

Bugzilla will be upgraded to version 5.0. The upgrade date is tentatively scheduled for 2 December 2018, pending final testing and feedback.

Bug 1131877 - Registering one IPA server with the browser removes entries for another

Summary:	Registering one IPA server with the browser removes entries for another

Status:	CLOSED ERRATA

Aliases:	None

Product:	Red Hat Enterprise Linux 7
Classification:	Red Hat
Component:	ipa (Show other bugs)
Sub Component:
Version:	7.0
Hardware:	Unspecified Unspecified

Priority	medium Severity unspecified
Target Milestone:	rc
Target Release:	---
Assigned To:	Martin Kosek
QA Contact:	Namita Soman
Docs Contact:

URL:
Whiteboard:
Keywords:

Depends On:
Blocks:
	Show dependency tree / graph

Reported:	2014-08-20 04:17 EDT by Martin Kosek
Modified:	2015-03-05 05:13 EST (History)
CC List:	3 users (show)

See Also:
Fixed In Version:	ipa-4.1.0-0.1.alpha1.el7
Doc Type:	Bug Fix
Doc Text:
Story Points:	---
Clone Of:
Environment:
Last Closed:	2015-03-05 05:13:27 EST
Type:	---
Regression:	---
Mount Type:	---
Documentation:	---
CRM:
Verified Versions:
Category:	---
oVirt Team:	---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team:	---

Attachments	(Terms of Use)
Add an attachment (proposed patch, testcase, etc.)

External Trackers
Tracker	ID	Priority	Status	Summary	Last Updated
Red Hat Product Errata	RHSA-2015:0442	normal	SHIPPED_LIVE	Moderate: ipa security, bug fix, and enhancement update	2015-03-05 09:50:39 EST

Groups: None (edit)

Description Martin Kosek 2014-08-20 04:17:41 EDT

This bug is created as a clone of upstream ticket:
https://fedorahosted.org/freeipa/ticket/4478

Registereing an IPA server webui  with a browser sets network.negotiate-auth.trusted-uris

(visible by looking at the about:config url in the browser).

However, if there is a value in there already, it removes the old value.  Instead, it should append the new server to the list:  
For example, if i edit mine by hand to look like this
.cloudlab.freeipa.org, .younglogic.net

I can connect to both servers.

Comment 1 Petr Vobornik 2014-09-11 03:43:52 EDT

Fixed upstream
master:
https://fedorahosted.org/freeipa/changeset/388a6432ed9c45ca84240c596f091268176d46f9
https://fedorahosted.org/freeipa/changeset/4e6a3c69b0e07e5ec32381a47281ad88e41aae5d
ipa-4-1:
https://fedorahosted.org/freeipa/changeset/de90d7d44930cfa615e50ed022de7ea48e31609a
https://fedorahosted.org/freeipa/changeset/97aebf8635ba26398353c91de9ca60844bea8c27

Comment 3 Varun Mylaraiah 2015-01-28 14:42:21 EST

Verified.

IPA version:
------------
ipa-server-4.1.0-15.el7.x86_64

Comment 5 errata-xmlrpc 2015-03-05 05:13:27 EST

Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://rhn.redhat.com/errata/RHSA-2015-0442.html

Note You need to log in before you can comment on or make changes to this bug.