URL: https://github.com/freeipa/freeipa/pull/608
Author: HonzaCholasta
Title: #608: tasks: run `systemctl daemon-reload` after httpd.service.d updates
Action: synchronized

To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/608/head:pr608
git checkout pr608

URL: https://github.com/freeipa/freeipa/pull/608
Author: HonzaCholasta
Title: #608: tasks: run `systemctl daemon-reload` after httpd.service.d updates
Action: edited

Changed field: body
Original value:
"""
Run `systemctl daemon-reload` after
`/etc/systemd/system/httpd.service.d/ipa.conf` is created or deleted,
otherwise systemd will not merge the file into httpd.service and therefore
required environment variables will not be set for httpd.

This fixes authentication failures ("No valid Negotiate header in server
response") due to missing GSS_USE_PROXY=yes in httpd environment.

https://pagure.io/freeipa/issue/6773
"""

URL: https://github.com/freeipa/freeipa/pull/608
Title: #608: tasks: run `systemctl daemon-reload` after httpd.service.d updates

Label: +ack

URL: https://github.com/freeipa/freeipa/pull/608
Title: #608: tasks: run `systemctl daemon-reload` after httpd.service.d updates

Label: -ack

URL: https://github.com/freeipa/freeipa/pull/608
Title: #608: tasks: run `systemctl daemon-reload` after httpd.service.d updates

martbab commented:
"""
Hmmm I just caught a following error during FreeIPA replica uninstall:

```console[***@replica1 ~]# ipa-server-install --uninstall -U
Updating DNS system records
--------------------------------------
Deleted IPA server "replica1.ipa.test"
--------------------------------------
Shutting down all IPA services
Unconfiguring ntpd
Configuring certmonger to stop tracking system certificates for KRA
Configuring certmonger to stop tracking system certificates for CA
Unconfiguring CA
Unconfiguring web server
ipa : ERROR Command '/bin/systemctl restart httpd.service' returned non-zero exit status 1
```

see the excerpt of the uninstall log here: https://paste.fedoraproject.org/paste/TcHWFTK-TwNhO0v6~BBMG15M1UNdIGYhyRLivL9gydE=/

It looks like we need another daemon-reload in the Apache uninstallation. Although I don't see any reason to add it, it looks like some restore operations make systemd unhappy.
"""

See the full comment at https://github.com/freeipa/freeipa/pull/608#issuecomment-287329708

URL: https://github.com/freeipa/freeipa/pull/608
Title: #608: tasks: run `systemctl daemon-reload` after httpd.service.d updates

HonzaCholasta commented:
"""
@martbab, can I see httpd error_log? Uninstall works fine for me.
"""

See the full comment at https://github.com/freeipa/freeipa/pull/608#issuecomment-287747397

URL: https://github.com/freeipa/freeipa/pull/608
Title: #608: tasks: run `systemctl daemon-reload` after httpd.service.d updates

HonzaCholasta commented:
"""
@martbab, and httpd journal as well.
"""

See the full comment at https://github.com/freeipa/freeipa/pull/608#issuecomment-287747491

URL: https://github.com/freeipa/freeipa/pull/608
Title: #608: tasks: run `systemctl daemon-reload` after httpd.service.d updates

martbab commented:
"""
@HonzaCholasta I was not able to reproduce it any more so I guess that it was transient error. If I encounter it again I will file a separate ticket.
"""

See the full comment at https://github.com/freeipa/freeipa/pull/608#issuecomment-288118393

URL: https://github.com/freeipa/freeipa/pull/608
Title: #608: tasks: run `systemctl daemon-reload` after httpd.service.d updates

Label: +ack

URL: https://github.com/freeipa/freeipa/pull/608
Title: #608: tasks: run `systemctl daemon-reload` after httpd.service.d updates

Label: +pushed

URL: https://github.com/freeipa/freeipa/pull/608
Title: #608: tasks: run `systemctl daemon-reload` after httpd.service.d updates

martbab commented:
"""
master:

* 3de09709cc33f1d26f2d605bac82110fe73dde03 tasks: run `systemctl daemon-reload` after httpd.service.d updates
ipa-4-5:

* 62c41219acdd0e82201168aea5cb22879c655742 tasks: run `systemctl daemon-reload` after httpd.service.d updates
"""

See the full comment at https://github.com/freeipa/freeipa/pull/608#issuecomment-288118924

URL: https://github.com/freeipa/freeipa/pull/608
Author: HonzaCholasta
Title: #608: tasks: run `systemctl daemon-reload` after httpd.service.d updates
Action: closed

To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/608/head:pr608
git checkout pr608

URL: https://github.com/freeipa/freeipa/pull/608
Title: #608: tasks: run `systemctl daemon-reload` after httpd.service.d updates

martbab commented:
"""
If you need the fix in ipa-4-4 you need to file a rebased PR against that branch.
"""

See the full comment at https://github.com/freeipa/freeipa/pull/608#issuecomment-288119146