Date: Mon, 15 Sep 2008 19:07:38 +0200 (CEST) From: Janos Mohacsi <janos.mohacsi@bsd.hu> To: FreeBSD-gnats-submit@FreeBSD.org Subject: ports/127402: [NEW PORT] security/shibboleth-sp: C++ Shibboleth Service Provider (Internet2) for Apache Message-ID: <200809151707.m8FH7cOF024691@csoki.ki.iif.hu> Resent-Message-ID: <200809151710.m8FHA1SP030214@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
>Number: 127402 >Category: ports >Synopsis: [NEW PORT] security/shibboleth-sp: C++ Shibboleth Service Provider (Internet2) for Apache >Confidential: no >Severity: non-critical >Priority: low >Responsible: freebsd-ports-bugs >State: open >Quarter: >Keywords: >Date-Required: >Class: change-request >Submitter-Id: current-users >Arrival-Date: Mon Sep 15 17:10:01 UTC 2008 >Closed-Date: >Last-Modified: >Originator: Janos Mohacsi >Release: FreeBSD 6.4-PRERELEASE i386 >Organization: NIIF/HUNGARNET >Environment: System: FreeBSD csoki.ki.iif.hu 6.4-PRERELEASE FreeBSD 6.4-PRERELEASE #7: Fri Sep 5 15:16:32 CEST >Description: Shibboleth is standards-based, open source middleware software which provides Web Single SignOn (SSO) across or within organizational boundaries. It allows sites to make informed authorization decisions for individual access of protected online resources in a privacy-preserving manner. This software is a C++ implementation of the Service Provider version 2 component of the Shibboleth can be used in Apache Web servers. The service provider manages secured resources. User access to resources is based on assertions received by the service provider (SP) from an identity provider. WWW: http://shibboleth.internet2.edu/ Generated with FreeBSD Port Tools 0.77 NOTE: this should replace in long term the security/shibboleth-sp port. I created under different name since they are configured rather differently. No easy upgrade path is possible form shibbolet sp 1.3 to 2.x. This requires some already submitted ports/patches: opensaml2, xmltooling, xerces-c2 vesion 2.8! etc. >How-To-Repeat: >Fix: --- shibboleth-sp-2.1.shar begins here --- # This is a shell archive. Save it in a file, remove anything before # this line, and then unpack it by entering "sh file". Note, it may # create directories; files and directories will be owned by you and # have default permissions. # # This archive contains: # # shibboleth2-sp # shibboleth2-sp/files # shibboleth2-sp/files/shibboleth-sp.in # shibboleth2-sp/files/patch-shibsp_remoting_impl_TCPListener.cpp # shibboleth2-sp/Makefile # shibboleth2-sp/distinfo # shibboleth2-sp/pkg-descr # shibboleth2-sp/pkg-plist # echo c - shibboleth2-sp mkdir -p shibboleth2-sp > /dev/null 2>&1 echo c - shibboleth2-sp/files mkdir -p shibboleth2-sp/files > /dev/null 2>&1 echo x - shibboleth2-sp/files/shibboleth-sp.in sed 's/^X//' >shibboleth2-sp/files/shibboleth-sp.in << '53ff55569c92c6723b5811f675bb98ca' X#!/bin/sh X# X# $FreeBSD: ports/security/shibboleth-sp/files/shibboleth-sp.in,v 1.1 2007/08/03 23:21:25 pav Exp $ X# X# PROVIDE: shibboleth_sp X# REQUIRE: DAEMON X# X X. %%RC_SUBR%% X Xname="shibboleth_sp" Xrcvar=${name}_enable X X[ -z "$shibboleth_sp_enable" ] && shibboleth_sp_enable="NO" Xpidfile="/var/run/${name}.pid" Xcommand="%%PREFIX%%/sbin/shibd" Xstart_cmd="${command} -f -p ${pidfile} &" X Xload_rc_config $name Xrun_rc_command "$1" 53ff55569c92c6723b5811f675bb98ca echo x - shibboleth2-sp/files/patch-shibsp_remoting_impl_TCPListener.cpp sed 's/^X//' >shibboleth2-sp/files/patch-shibsp_remoting_impl_TCPListener.cpp << '2906cc9ba467a1c1e0b33182a8946ebe' X X$FreeBSD$ X X--- shibsp/remoting/impl/TCPListener.cpp.orig X+++ shibsp/remoting/impl/TCPListener.cpp X@@ -38,6 +38,7 @@ X #include <stdio.h> X #include <stdlib.h> X #include <errno.h> X+#include <netinet/in.h> X X using namespace shibsp; X using namespace xmltooling; 2906cc9ba467a1c1e0b33182a8946ebe echo x - shibboleth2-sp/Makefile sed 's/^X//' >shibboleth2-sp/Makefile << '4fd46d52947d4efb233058bd57dd4019' X# New ports collection makefile for: security/shibboleth2-sp X# Date created: 17 Sept2008 X# Whom: Janos Mohacsi <janos.mohacsi@bsd.hu> X# X# $FreeBSD$ X# X XPORTNAME= shibboleth-sp XPORTVERSION= 2.1 XCATEGORIES= security www XMASTER_SITES= http://shibboleth.internet2.edu/downloads/shibboleth/cppsp/2.1/ X XMAINTAINER= janos.mohacsi@bsd.hu XCOMMENT= C++ Shibboleth Service Provider (Internet2) for Apache X XLIB_DEPENDS= saml.3:${PORTSDIR}/security/opensaml2 X XOPTIONS= APACHE22 "Use Apache version 2.2 instead of version 2.0" on X XUSE_GMAKE= yes XGNU_CONFIGURE= yes XUSE_LDCONFIG= yes XUSE_RC_SUBR= shibboleth-sp XWRKSRC= ${WRKDIR}/shibboleth-${PORTVERSION} X X.include <bsd.port.pre.mk> X X.if defined(WITH_APACHE22) XUSE_APACHE= 22 XCONFIGURE_ARGS= --enable-apache-22 --with-apxs22=${APXS} X.else XUSE_APACHE= 20 XCONFIGURE_ARGS= --enable-apache-20 --with-apxs2=${APXS} X.endif XCONFIGURE_ARGS+= --localstatedir=/var --with-log4shib=${LOCALBASE} --with-openssl=${OPENSSLBASE} --with-xmltooling=${LOCALBASE} X Xpost-patch: X @${REINPLACE_CMD} -e 's|/run|/run/shibboleth|' ${WRKSRC}/configs/Makefile.in X @${REINPLACE_CMD} -e 's|/doc/|/share/doc/|' ${WRKSRC}/doc/Makefile.in X X.include <bsd.port.post.mk> 4fd46d52947d4efb233058bd57dd4019 echo x - shibboleth2-sp/distinfo sed 's/^X//' >shibboleth2-sp/distinfo << 'bba97482a1f55e06d2ef39a4e7ea9336' XMD5 (shibboleth-sp-2.1.tar.gz) = 39c35035139f2cf06b05633b79441852 XSHA256 (shibboleth-sp-2.1.tar.gz) = 6967dc482ee9a6b24335ee1e14954f78815393252a0fde0c44b4274ff5462554 XSIZE (shibboleth-sp-2.1.tar.gz) = 756381 bba97482a1f55e06d2ef39a4e7ea9336 echo x - shibboleth2-sp/pkg-descr sed 's/^X//' >shibboleth2-sp/pkg-descr << '43f0b1cb8dbc5b586de1850037493138' XShibboleth is standards-based, open source middleware software which Xprovides Web Single SignOn (SSO) across or within organizational Xboundaries. It allows sites to make informed authorization decisions Xfor individual access of protected online resources in a Xprivacy-preserving manner. X XThis software is a C++ implementation of the Service Provider version 2 Xcomponent of the Shibboleth can be used in Apache Web servers. The Xservice provider manages secured resources. User access to resources Xis based on assertions received by the service provider (SP) from Xan identity provider. X XWWW: http://shibboleth.internet2.edu/ 43f0b1cb8dbc5b586de1850037493138 echo x - shibboleth2-sp/pkg-plist sed 's/^X//' >shibboleth2-sp/pkg-plist << 'f59698c4ce0f2ede0c1ab24befde3bfc' Xbin/mdquery Xbin/resolvertest Xetc/rc.d/shibboleth-sp Xetc/shibboleth/native.logger Xetc/shibboleth/native.logger.dist Xetc/shibboleth/shibd.logger Xetc/shibboleth/shibd.logger.dist Xetc/shibboleth/shibboleth2.xml Xetc/shibboleth/shibboleth2.xml.dist Xetc/shibboleth/attribute-map.xml Xetc/shibboleth/attribute-map.xml.dist Xetc/shibboleth/attribute-policy.xml Xetc/shibboleth/attribute-policy.xml.dist Xetc/shibboleth/example-metadata.xml Xetc/shibboleth/example-metadata.xml.dist Xetc/shibboleth/console.logger Xetc/shibboleth/console.logger.dist Xetc/shibboleth/syslog.logger Xetc/shibboleth/syslog.logger.dist Xetc/shibboleth/accessError.html Xetc/shibboleth/accessError.html.dist Xetc/shibboleth/sessionError.html Xetc/shibboleth/sessionError.html.dist Xetc/shibboleth/metadataError.html Xetc/shibboleth/metadataError.html.dist Xetc/shibboleth/bindingTemplate.html Xetc/shibboleth/bindingTemplate.html.dist Xetc/shibboleth/discoveryTemplate.html Xetc/shibboleth/discoveryTemplate.html.dist Xetc/shibboleth/localLogout.html Xetc/shibboleth/localLogout.html.dist Xetc/shibboleth/globalLogout.html Xetc/shibboleth/globalLogout.html.dist Xetc/shibboleth/sslError.html Xetc/shibboleth/sslError.html.dist Xetc/shibboleth/shibd-redhat Xetc/shibboleth/shibd-debian Xetc/shibboleth/shibd-osx.plist Xetc/shibboleth/apache.config Xetc/shibboleth/apache2.config Xetc/shibboleth/apache22.config Xetc/shibboleth/keygen.sh Xetc/shibboleth/upgrade.xsl Xetc/shibboleth/sp-key.pem Xetc/shibboleth/sp-cert.pem Xinclude/shibsp/attribute/filtering/AttributeFilter.h Xinclude/shibsp/attribute/filtering/BasicFilteringContext.h Xinclude/shibsp/attribute/filtering/FilteringContext.h Xinclude/shibsp/attribute/filtering/FilterPolicyContext.h Xinclude/shibsp/attribute/filtering/MatchFunctor.h Xinclude/shibsp/attribute/Attribute.h Xinclude/shibsp/attribute/AttributeDecoder.h Xinclude/shibsp/attribute/NameIDAttribute.h Xinclude/shibsp/attribute/ScopedAttribute.h Xinclude/shibsp/attribute/SimpleAttribute.h Xinclude/shibsp/attribute/resolver/AttributeExtractor.h Xinclude/shibsp/attribute/resolver/AttributeResolver.h Xinclude/shibsp/attribute/resolver/ResolutionContext.h Xinclude/shibsp/binding/ArtifactResolver.h Xinclude/shibsp/binding/SOAPClient.h Xinclude/shibsp/handler/AbstractHandler.h Xinclude/shibsp/handler/AssertionConsumerService.h Xinclude/shibsp/handler/Handler.h Xinclude/shibsp/handler/LogoutHandler.h Xinclude/shibsp/handler/RemotedHandler.h Xinclude/shibsp/handler/SessionInitiator.h Xinclude/shibsp/AbstractSPRequest.h Xinclude/shibsp/AccessControl.h Xinclude/shibsp/Application.h Xinclude/shibsp/base.h Xinclude/shibsp/exceptions.h Xinclude/shibsp/paths.h Xinclude/shibsp/RequestMapper.h Xinclude/shibsp/ServiceProvider.h Xinclude/shibsp/SessionCache.h Xinclude/shibsp/SessionCacheEx.h Xinclude/shibsp/SPConfig.h Xinclude/shibsp/SPRequest.h Xinclude/shibsp/TransactionLog.h Xinclude/shibsp/version.h Xinclude/shibsp/lite/CommonDomainCookie.h Xinclude/shibsp/lite/SAMLConstants.h Xinclude/shibsp/metadata/MetadataExt.h Xinclude/shibsp/metadata/MetadataProviderCriteria.h Xinclude/shibsp/remoting/ddf.h Xinclude/shibsp/remoting/ListenerService.h Xinclude/shibsp/security/PKIXTrustEngine.h Xinclude/shibsp/security/SecurityPolicy.h Xinclude/shibsp/util/CGIParser.h Xinclude/shibsp/util/DOMPropertySet.h Xinclude/shibsp/util/PropertySet.h Xinclude/shibsp/util/SPConstants.h Xinclude/shibsp/util/TemplateParameters.h Xlib/libshibsp.so.2 Xlib/libshibsp.so Xlib/shibboleth/adfs.so Xlib/shibboleth/adfs.la Xlib/shibboleth/adfs-lite.so Xlib/shibboleth/adfs-lite.la Xlib/shibboleth/mod_shib_22.so Xlib/shibboleth/mod_shib_22.la Xlib/libshibsp-lite.so.2 Xlib/libshibsp-lite.so Xsbin/shibd Xshare/xml/shibboleth/catalog.xml Xshare/xml/shibboleth/shibboleth.xsd Xshare/xml/shibboleth/shibboleth-metadata-1.0.xsd Xshare/xml/shibboleth/shibboleth-2.0-native-sp-config.xsd Xshare/xml/shibboleth/shibboleth-2.0-afp.xsd Xshare/xml/shibboleth/shibboleth-2.0-afp-mf-basic.xsd Xshare/xml/shibboleth/shibboleth-2.0-afp-mf-saml.xsd Xshare/xml/shibboleth/shibboleth-2.0-attribute-map.xsd Xshare/xml/shibboleth/shibboleth-2.0-sp-notify.xsd Xshare/xml/shibboleth/WS-Trust.xsd Xshare/share/doc/shibboleth/CREDITS.txt Xshare/share/doc/shibboleth/LICENSE.txt Xshare/share/doc/shibboleth/NOTICE.txt Xshare/share/doc/shibboleth/README.txt Xshare/share/doc/shibboleth/RELEASE.txt Xshare/share/doc/shibboleth/FASTCGI.LICENSE Xshare/share/doc/shibboleth/OPENSSL.LICENSE Xshare/share/doc/shibboleth/LOG4CPP.LICENSE Xshare/share/doc/shibboleth/main.css Xshare/share/doc/shibboleth/logo.jpg X@exec mkdir -p %D/data X@exec mkdir -p /var/log/shibboleth X@exec mkdir -p /var/run/shibboleth X@exec chmod -R ug=rwx,o= /var/run/shibboleth X@unexec rm -rf /var/run/shibboleth 2>&1 >/dev/null || true X@dirrmtry share/share/doc/shibboleth X@dirrmtry share/share/doc X@dirrmtry share/share X@dirrmtry share/doc/shibboleth/api X@dirrmtry share/doc/shibboleth X@dirrmtry lib/shibboleth X@dirrmtry share/xml/shibboleth X@dirrmtry include/shibsp/util X@dirrmtry include/shibsp/security X@dirrmtry include/shibsp/remoting X@dirrmtry include/shibsp/metadata X@dirrmtry include/shibsp/lite X@dirrmtry include/shibsp/handler X@dirrmtry include/shibsp/binding X@dirrmtry include/shibsp/attribute/resolver X@dirrmtry include/shibsp/attribute/filtering X@dirrmtry include/shibsp/attribute X@dirrmtry include/shibsp X@dirrmtry etc/shibboleth X@dirrm share/doc/shibboleth X@dirrmtry data f59698c4ce0f2ede0c1ab24befde3bfc exit --- shibboleth-sp-2.1.shar ends here --- >Release-Note: >Audit-Trail: >Unformatted:
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200809151707.m8FH7cOF024691>