Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Extending FreeIPA

Petr Viktorin
February 08, 2014
Programming
0
230

Extending FreeIPA

DevConf, Brno, 2014-02-08
NOTE: Most of these are just notes, not shown on screen. See https://github.com/encukou/slides/tree/master/2014-02-08-devconf-extending-freeipa for some details.

Petr Viktorin

February 08, 2014
Tweet

More Decks by Petr Viktorin

See All by Petr Viktorin
Komunitní kurzy
encukou
0
98
Jak postavit slovník z jedniček a nul
encukou
0
320
Python Packaging in Fedora
encukou
0
210
Python in Fedora
encukou
0
57
Essential Testing Concepts
encukou
0
83
Import Deep Dive
encukou
0
42
Dynamic Time Warping & Synchronizace videí
encukou
0
34
Python 3.4
encukou
0
83
import asyncio
encukou
0
380

Other Decks in Programming

See All in Programming
その Swift コード、
こう書き換えてみないか / Polishing your Swift code with me!
treastrain
1
3.2k
Night Session: The Future of WebDev
manfredsteyer
PRO
0
130
Lightweight Architectures: With Angular's Latest Innovations
manfredsteyer
PRO
0
200
M5Unifiedの紹介
lovyan03
0
2.1k
Goのジェネリクスを活用する
syumai
2
1.2k
The Angular Renaissance: Architectures with Modern Angular
manfredsteyer
PRO
1
230
AWS CDKのあるあるお悩みに答えたい
tmokmss
5
1.1k
Writing Greener Java Applications
hollycummins
0
260
Webフロントエンドのための実践「テスト」手法 CodeZine Night #1
takefumiyoshii
19
5.2k
LlamaIndex で Text-to-SQL 100 本ノック!
os1ma
2
700
Semantic Kernel(C#)でAzure OpenAI ServiceのGPT-4を使ってみる
tomokusaba
0
110
The Adventure of RedAmber - A data frame library in Ruby
heronshoes
0
190

Featured

See All Featured
A designer walks into a library…
pauljervisheath
199
17k
What's new in Ruby 2.0
geeforr
336
30k
RailsConf & Balkan Ruby 2019: The Past, Present, and Future of Rails at GitHub
eileencodes
123
29k
Into the Great Unknown - MozCon
thekraken
5
480
YesSQL, Process and Tooling at Scale
rocio
158
13k
The Web Native Designer (August 2011)
paulrobertlloyd
78
2.3k
Product Roadmaps are Hard
iamctodd
39
8.1k
Art, The Web, and Tiny UX
lynnandtonic
285
18k
The Brand Is Dead. Long Live the Brand.
mthomps
48
3.7k
Scaling GitHub
holman
453
140k
Building Applications with DynamoDB
mza
86
5.1k
Fight the Zombie Pattern Library - RWD Summit 2016
marcelosomers
226
16k

Transcript

  1. EXTENDING FREEIPA
    Petr Viktorin
    [email protected]
    DevConf, 2014-02-08

    View Slide

  2. What is FreeIPA?

    View Slide

  3. IPA API
    UI
    INSTALL, UPGRADE,
    MANAGE
    ipalib plugins
    backend plugins
    upgrade plugins
    389
    directory server certificate system http server
    kerberos
    system security
    services daemon
    BIND
    dns server
    sudo
    PAM sshd
    $ ipa user-show jwhite
    User login: jwhite
    First name: Jaren
    Last name: White
    Home directory: /home/jwhite
    Login shell: /bin/sh
    Email address: [email protected]
    UID: 1699600004
    GID: 1699600004
    Account disabled: False
    Password: False
    Member of groups: ipausers
    Kerberos keys available: False
    JSON-RPC

    View Slide

  4. LDAP
    Tree structure
    object classes & attribute types
    OIDs
    http://www.zytrax.com/books/ldap/

    View Slide

  5. Extending LDAP
    Schema
    install/share/60basev3.ldif
    Content updating
    install/updates/40-otp.update
    ACIs
    Updater plugins
    ipaserver/install/plugins/upload_cacrt.py

    View Slide

  6. ipaldap
    “Object–LDAP mapper”
    see ipaldap-demo.py

    View Slide

  7. API plugins
    Objects & Methods
    ipalib/plugins/user.py

    View Slide

  8. Objects
    objectclasses, attributes
    takes_params
    attribute name (*?+)
    validators
    cli_name
    flags - see
    ipalib.parameters.Param
    default permissions

    View Slide

  9. Methods
    run
    forward
    execute

    View Slide

  10. Callbacks
    pre_callback
    Extra validation, generating random password
    post_callback
    Updating other entries, tweaking output
    exc_callback
    Error handling
    interactive_prompt_callback
    Prompting for values

    View Slide

  11. Other “plugins”
    DS plugins
    UI facets
    Tests

    View Slide

  12. EXTENDING FREEIPA

    View Slide

  13. A. Extend the core
    + tweak everything
    − gotta play by the rules
    B. External plugin
    + do whatever you want
    − hic sunt leones

    View Slide

  14. A. Extend the core
    1. Say hello
    2. File an RFE ticket
    3. Read General
    Considerations
    4. Write a Design page
    5. Submit patches
    6. Profit!

    View Slide

  15. B. External plugin
    1. Say hello!
    2. Write a plugin
    3. Share the plugin
    4. Package the plugin
    5. Profit!

    View Slide

  16. ?

    View Slide