{"update": {"autokarma": true, "autotime": true, "stable_karma": 3, "stable_days": 7, "unstable_karma": -3, "require_bugs": true, "require_testcases": true, "display_name": "", "notes": "# FreeIPA 4.8.1\n\nFull upstream release notes: https://www.freeipa.org/page/Releases/4.8.1\n\n## Highlights in 4.8.1\n\n* 5608: [RFE] Add Dogtag configuration extensions\n\nIt is now possible to tune Dogtag configuration when creating a CA by passing\nan overlay configuration file with --pki-config-override option. Not all\noptions are supported yet and documentation is being worked on.\n\n--------\n\n* Release tarball corrections\n\nFreeIPA 4.8.0 release tarball did lack two update files. This release adds\nthem back. The files existed in git but weren't installed when building\ndistribution packages.\n\n--------\n\n* 8040: ipa migrade-ds regression\n\nFreeIPA 4.8.0 tightened access to LDAP connections to disallow passing\nplainttext credentials over an insecure connection. This broke 'ipa migrate-ds'\nfunctionality where in order to migrate to FreeIPA one often needs to connect\nto a legacy LDAP server which might not be using TLS certificates.\n\nFreeIPA 4.8.1 restores ability to use insecure LDAP connections in 'ipa\nmigrate-ds' for migration purposes only.\n\n## Enhancements\n\n* 7932 and 7933: index certmap attributes and allow altSecurityIdentities in schema\n\nFor certificate mapping operations it is possible to specify\naltSecurityIdentities in the certification mapping filters. The filter is\napplied by SSSD at both FreeIPA and Active Directory LDAP servers. While\nnothing is using altSecurityIdentities in FreeIPA now, the schema allows to\noptimize queries better at LDAP server side. Additionally, other certificate\nmapping attributes  are now indexed to allow faster operations for environments\nwith a large set of mapping rules.\n\n--------\n\n* 7991: Profile-based renewal of system certificates\n\nFreeIPA-specific certificates tracked by certmonger can now be renewed with\npreservation of a certificate profile used to issue them. It is also possible\nto change the certificate profile during update. This is required to allow\nupdating certain profile-specific attributes of the system certificates in\nfuture.\n\n--------\n\n", "type": "enhancement", "status": "stable", "request": null, "severity": "low", "suggest": "unspecified", "locked": false, "pushed": true, "critpath": false, "critpath_groups": null, "close_bugs": true, "date_submitted": "2019-08-14 16:18:07", "date_modified": null, "date_approved": null, "date_testing": "2019-08-16 19:50:03", "date_stable": "2019-08-24 01:02:35", "alias": "FEDORA-2019-d95d1971b2", "test_gating_status": "ignored", "from_tag": null, "date_pushed": "2019-08-24 01:02:35", "meets_testing_requirements": true, "url": "https://bodhi.stg.fedoraproject.org/updates/FEDORA-2019-d95d1971b2", "title": "freeipa-4.8.1-1.fc30", "version_hash": "e16c58384271a2bf0fbf614fef2e6673e4467a63", "release": {"name": "F30", "long_name": "Fedora 30", "version": "30", "id_prefix": "FEDORA", "branch": "f30", "dist_tag": "f30", "stable_tag": "f30-updates", "testing_tag": "f30-updates-testing", "candidate_tag": "f30-updates-candidate", "pending_signing_tag": "f30-signing-pending", "pending_testing_tag": "f30-updates-testing-pending", "pending_stable_tag": "f30-updates-pending", "override_tag": "f30-override", "mail_template": "fedora_errata_template", "state": "archived", "composed_by_bodhi": true, "create_automatic_updates": false, "package_manager": "dnf", "testing_repository": "updates-testing", "released_on": null, "eol": null, "critpath_mandatory_days_in_testing": 14, "mandatory_days_in_testing": 7, "critpath_min_karma": 2, "min_karma": 1, "setting_status": null}, "user": {"name": "abbra", "email": "abokovoy@redhat.com", "id": 1242, "avatar": "https://seccdn.libravatar.org/avatar/3f3c51cb81fb43e685e65ff696d895ac268ff71949128c02b81dec65a4405a0a?s=24&d=retro", "openid": "abbra.id.stg.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "bind-dyndb-ldap"}, {"name": "gitfreeipa"}, {"name": "gitslapi-nis"}, {"name": "gitfreeipa-docs"}]}, "comments": [{"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for testing by abbra. ", "timestamp": "2019-08-14 16:18:07", "update_id": 147225, "user_id": 91, "id": 1001092, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.stg.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update's test gating status has been changed to 'waiting'.", "timestamp": "2019-08-14 16:18:08", "update_id": 147225, "user_id": 91, "id": 1001093, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.stg.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update's test gating status has been changed to 'ignored'.", "timestamp": "2019-08-14 16:18:13", "update_id": 147225, "user_id": 91, "id": 1001094, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.stg.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been pushed to testing.", "timestamp": "2019-08-16 19:50:57", "update_id": 147225, "user_id": 91, "id": 1003846, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.stg.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update can be pushed to stable now if the maintainer wishes", "timestamp": "2019-08-23 19:51:20", "update_id": 147225, "user_id": 91, "id": 1011844, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.stg.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for stable by bodhi. ", "timestamp": "2019-08-23 19:51:20", "update_id": 147225, "user_id": 91, "id": 1011845, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.stg.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been pushed to stable.", "timestamp": "2019-08-24 01:03:24", "update_id": 147225, "user_id": 91, "id": 1012165, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.stg.fedoraproject.org", "groups": []}}], "builds": [{"nvr": "freeipa-4.8.1-1.fc30", "signed": true, "release_id": 28, "type": "rpm", "epoch": 0}], "bugs": [{"bug_id": 1732524, "title": "repeated uninstallation of ipa-client-samba crashes", "security": false, "parent": false, "feedback": []}, {"bug_id": 1732528, "title": "ipa-client-samba can not install samba after uninstallation", "security": false, "parent": false, "feedback": []}], "updateid": "FEDORA-2019-d95d1971b2", "karma": 0, "content_type": "rpm", "test_cases": []}, "can_edit": false, "ci_allowed": false}