From f637bcbe1066eec41e90b99d7a4ab12288f08a74 Mon Sep 17 00:00:00 2001
From: Christian Heimes <cheimes@redhat.com>
Date: Fri, 6 Jul 2018 15:07:27 +0200
Subject: [PATCH] Fix CA topology warning
Commit 7284097eedef70dd556270732e6ab8e23501ce09 kept
find_providing_servers('CA') call before enable_services(). Therefore the
list of known CA servers did not contain the current replica.
ipa-replica-install on the first replica with --setup-ca still printed
the CA topology warning.
See: https://pagure.io/freeipa/issue/7566
Signed-off-by: Christian Heimes <cheimes@redhat.com>
Reviewed-By: Alexander Bokovoy <abokovoy@redhat.com>
---
ipaserver/install/server/replicainstall.py | 3 +--
ipaserver/install/service.py | 4 ++--
2 files changed, 3 insertions(+), 4 deletions(-)
diff --git a/ipaserver/install/server/replicainstall.py b/ipaserver/install/server/replicainstall.py
index 0bf3568a300a133fa505dc8fc339c6677f9c5f73..387d4ca85d9ad41db3ce2d9bc2ae67ba11836ada 100644
--- a/ipaserver/install/server/replicainstall.py
+++ b/ipaserver/install/server/replicainstall.py
@@ -1524,8 +1524,6 @@ def install(installer):
if options.setup_adtrust:
adtrust.install(False, options, fstore, api)
- ca_servers = service.find_providing_servers('CA', api.Backend.ldap2, api)
-
if not promote:
# Call client install script
service.print_msg("Configuring client side components")
@@ -1556,6 +1554,7 @@ def install(installer):
# Enable configured services and update DNS SRV records
service.enable_services(config.host_name)
api.Command.dns_update_system_records()
+ ca_servers = service.find_providing_servers('CA', api.Backend.ldap2, api)
api.Backend.ldap2.disconnect()
# Everything installed properly, activate ipa service.
diff --git a/ipaserver/install/service.py b/ipaserver/install/service.py
index 0106379ea38e4a3fef8436256d6f315f524b8dee..39dc49e872c82961defc09c7240604bc1cba2228 100644
--- a/ipaserver/install/service.py
+++ b/ipaserver/install/service.py
@@ -64,7 +64,7 @@ SERVICE_LIST = {
}
CONFIGURED_SERVICE = u'configuredService'
-ENABLED_SERVICE = 'enabledService'
+ENABLED_SERVICE = u'enabledService'
def print_msg(message, output_fd=sys.stdout):
@@ -636,7 +636,7 @@ class Service(object):
entry_dn = DN(('cn', name), ('cn', fqdn), ('cn', 'masters'),
('cn', 'ipa'), ('cn', 'etc'), ldap_suffix)
- search_kw = {'ipaConfigString': u'enabledService'}
+ search_kw = {'ipaConfigString': ENABLED_SERVICE}
filter = api.Backend.ldap2.make_filter(search_kw)
try:
entries, _truncated = api.Backend.ldap2.find_entries(
--
2.17.1