From d47a82619e0f3a8db842f0f1e62f63b815e86a52 Mon Sep 17 00:00:00 2001
From: CentOS Sources <bugs@centos.org>
Date: Nov 09 2021 10:00:17 +0000
Subject: import ansible-freeipa-0.3.8-1.el8


---

diff --git a/.ansible-freeipa.metadata b/.ansible-freeipa.metadata
index 1ba2486..a2316e2 100644
--- a/.ansible-freeipa.metadata
+++ b/.ansible-freeipa.metadata
@@ -1 +1 @@
-7c66c505597de97501d68c81fc1495aa4d627879 SOURCES/ansible-freeipa-0.3.2.tar.gz
+1d86f49f014b14a569969b4f859fb017f26de285 SOURCES/ansible-freeipa-0.3.8.tar.gz
diff --git a/.gitignore b/.gitignore
index 31eae4b..4ecd66b 100644
--- a/.gitignore
+++ b/.gitignore
@@ -1 +1 @@
-SOURCES/ansible-freeipa-0.3.2.tar.gz
+SOURCES/ansible-freeipa-0.3.8.tar.gz
diff --git a/SOURCES/ansible-freeipa-0.3.2-ipaclient-Do-not-fail-on-rmkeytab-error-7_rhbz#1931381.patch b/SOURCES/ansible-freeipa-0.3.2-ipaclient-Do-not-fail-on-rmkeytab-error-7_rhbz#1931381.patch
deleted file mode 100644
index 6c3cfc7..0000000
--- a/SOURCES/ansible-freeipa-0.3.2-ipaclient-Do-not-fail-on-rmkeytab-error-7_rhbz#1931381.patch
+++ /dev/null
@@ -1,39 +0,0 @@
-From 976cd1baa70b3ac1a271a362163e469b8d54d04a Mon Sep 17 00:00:00 2001
-From: Thomas Woerner <twoerner@redhat.com>
-Date: Mon, 22 Feb 2021 13:28:04 +0100
-Subject: [PATCH] ipaclient: Do not fail on rmkeytab error #7
-
-Due to commit f3f9672d527008dc741ac90aa465bac842eea08d (ipa-rmkeytab: Check
-return value of krb5_kt_(start|end)_seq_get) in IPA 4.9.2 there is a new
-error reported for ipa-rmkeytab in case of a non existing keytab file.
-Using ipa-rmkeytab now results in the error #7 in this case.
-
-The client role is using ipa-rmkeytab and needs to ignore error #7 also.
-
-Fixes: #510 (ipa-client installation with OTP is failed with error code 7
-             (keytab: /usr/sbin/ipa-rmkeytab returned 7))
----
- roles/ipaclient/tasks/install.yml | 6 +++++-
- 1 file changed, 5 insertions(+), 1 deletion(-)
-
-diff --git a/roles/ipaclient/tasks/install.yml b/roles/ipaclient/tasks/install.yml
-index fccc72e..23f9529 100644
---- a/roles/ipaclient/tasks/install.yml
-+++ b/roles/ipaclient/tasks/install.yml
-@@ -181,8 +181,12 @@
-     # Do not fail on error codes 3 and 5:
-     #   3 - Unable to open keytab
-     #   5 - Principal name or realm not found in keytab
-+    #   7 - Failed to set cursor, typically when errcode
-+    #       would be issued in past
-     failed_when: result_ipa_rmkeytab.rc != 0 and
--                 result_ipa_rmkeytab.rc != 3 and result_ipa_rmkeytab.rc != 5
-+                 result_ipa_rmkeytab.rc != 3 and
-+                 result_ipa_rmkeytab.rc != 5 and
-+                 result_ipa_rmkeytab.rc != 7
-     when: (ipaclient_use_otp | bool or ipaclient_force_join | bool) and not ipaclient_on_master | bool
- 
-   - name: Install - Backup and set hostname
--- 
-2.29.2
-
diff --git a/SPECS/ansible-freeipa.spec b/SPECS/ansible-freeipa.spec
index 68aeec4..12c41ed 100644
--- a/SPECS/ansible-freeipa.spec
+++ b/SPECS/ansible-freeipa.spec
@@ -7,23 +7,17 @@
 
 Summary: Roles and playbooks to deploy FreeIPA servers, replicas and clients
 Name: ansible-freeipa
-Version: 0.3.2
-Release: 2%{?dist}
+Version: 0.3.8
+Release: 1%{?dist}
 URL: https://github.com/freeipa/ansible-freeipa
 License: GPLv3+
 Source: https://github.com/freeipa/ansible-freeipa/archive/v%{version}.tar.gz#/%{name}-%{version}.tar.gz
-Patch0: ansible-freeipa-0.3.2-ipaclient-Do-not-fail-on-rmkeytab-error-7_rhbz#1931381.patch
 BuildArch: noarch
 
 %description
-ansible-freeipa provides Ansible roles and playbooks to install and uninstall
-FreeIPA servers, replicas and clients. Also modules for management.
-
-
-Note: The ansible playbooks and roles require a configured ansible environment
-where the ansible nodes are reachable and are properly set up to have an IP
-address and a working package manager.
+Ansible roles and playbooks to install and uninstall FreeIPA servers, replicas and clients. Also modules for group, host, topology and user management.
 
+Note: The Ansible playbooks and roles require a configured Ansible environment where the Ansible nodes are reachable and are properly set up to have an IP address and a working package manager.
 Features
 
 - Server, replica and client deployment
@@ -31,6 +25,7 @@ Features
 - One-time-password (OTP) support for client installation
 - Repair mode for clients
 - Backup and restore, also to and from controller
+- Modules for automembership rule management
 - Modules for config management
 - Modules for delegation management
 - Modules for dns config management
@@ -49,12 +44,13 @@ Features
 - Modules for pwpolicy management
 - Modules for role management
 - Modules for self service management
+- Modules for server management
 - Modules for service management
 - Modules for sudocmd management
 - Modules for sudocmdgroup management
 - Modules for sudorule management
 - Modules for topology management
-- Modules fot trust management
+- Modules for trust management
 - Modules for user management
 - Modules for vault management
 
@@ -62,10 +58,7 @@ Supported FreeIPA Versions
 
 FreeIPA versions 4.6 and up are supported by all roles.
 
-The client role supports versions 4.4 and up, the server role is working with
-versions 4.5 and up, the replica role is currently only working with versions
-4.6 and up.
-
+The client role supports versions 4.4 and up, the server role is working with versions 4.5 and up, the replica role is currently only working with versions 4.6 and up.
 Supported Distributions
 
 - RHEL/CentOS 7.4+
@@ -109,7 +102,6 @@ to get the needed requrements to run the tests.
 
 %prep
 %setup -q
-%patch0 -p1
 # Do not create backup files with patches
 
 # Fix python modules and module utils:
@@ -167,9 +159,48 @@ cp -rp tests %{buildroot}%{_datadir}/ansible-freeipa/
 %{_datadir}/ansible-freeipa/requirements-tests.txt
 
 %changelog
-* Thu Mar  4 2021 Thomas Woerner <twoerner@redhat.com> - 0.3.2-2
-- Fix ipaclient: Do not fail on rmkeytab error 7
-  Resolves: RHBZ#1931381
+* Tue Jul 13 2021 Thomas Woerner <twoerner@redhat.com> - 0.3.8-1
+- Update to version 0.3.8
+  https://github.com/freeipa/ansible-freeipa/releases/tag/v0.3.8
+  Related: RHBZ#1959875
+- automember: Verify condition keys
+  Related: RHBZ#1976926
+
+* Tue Jul 13 2021 Thomas Woerner <twoerner@redhat.com> - 0.3.7-1
+- Update to version 0.3.7
+  https://github.com/freeipa/ansible-freeipa/releases/tag/v0.3.7
+  Related: RHBZ#1959875
+- automember: Fix action to be automember or member, not service
+  Resolves: RRBZ#1976923
+- automember: Fix result["failed"] issues with conditions
+  Resolves: RRBZ#1976926
+
+* Wed Jun  9 2021 Thomas Woerner <twoerner@redhat.com> - 0.3.6-3
+- Apply fix for ipabackup: Use module to get IPA_BACKUP_DIR from ipaplatform
+  Related: RRBZ#1969847
+
+* Wed Jun  9 2021 Thomas Woerner <twoerner@redhat.com> - 0.3.6-2
+- ipabackup: Use module to get IPA_BACKUP_DIR from ipaplatform
+  Resolves: RRBZ#1969847
+
+* Mon Jun  7 2021 Thomas Woerner <twoerner@redhat.com> - 0.3.6-1
+- Update to version 0.3.6
+  https://github.com/freeipa/ansible-freeipa/releases/tag/v0.3.6
+  Resolves: RHBZ#1959875
+- ansible-freeipa-tests not in the compose
+  Resolves: RHBZ#1936869
+- Remove unsupported parameter for (ipapermission) module: perm_rights from
+  permission-present.yml
+  Resolves: RHBZ#1921654
+- Sample playbook included for selfservice module is incorrect
+  Resolves: RHBZ#1922060
+- ipa-client-install failing with error code 7(keytab: /usr/sbin/ipa-rmkeytab
+  returned 7)
+  Resolves: RHBZ#1935123
+- New management module ipaserver
+  Resolves: RHBZ#1966493
+- New management module ipaautomember
+  Resolves: RHBZ#1966496
 
 * Mon Jan 18 2021 Thomas Woerner <twoerner@redhat.com> - 0.3.2-1
 - Update to version 0.3.2