From owner-svn-ports-head@freebsd.org Thu Mar 24 20:30:34 2016 Return-Path: Delivered-To: svn-ports-head@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id BF269ADC212; Thu, 24 Mar 2016 20:30:34 +0000 (UTC) (envelope-from romain@FreeBSD.org) Received: from repo.freebsd.org (repo.freebsd.org [IPv6:2610:1c1:1:6068::e6a:0]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 9B7FD12F4; Thu, 24 Mar 2016 20:30:34 +0000 (UTC) (envelope-from romain@FreeBSD.org) Received: from repo.freebsd.org ([127.0.1.37]) by repo.freebsd.org (8.15.2/8.15.2) with ESMTP id u2OKUXQk040188; Thu, 24 Mar 2016 20:30:33 GMT (envelope-from romain@FreeBSD.org) Received: (from romain@localhost) by repo.freebsd.org (8.15.2/8.15.2/Submit) id u2OKUXYk040183; Thu, 24 Mar 2016 20:30:33 GMT (envelope-from romain@FreeBSD.org) Message-Id: <201603242030.u2OKUXYk040183@repo.freebsd.org> X-Authentication-Warning: repo.freebsd.org: romain set sender to romain@FreeBSD.org using -f From: =?UTF-8?Q?Romain_Tarti=c3=a8re?= Date: Thu, 24 Mar 2016 20:30:33 +0000 (UTC) To: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-head@freebsd.org Subject: svn commit: r411810 - in head/sysutils: . mcollective-actionpolicy-auth mcollective-actionpolicy-auth/files X-SVN-Group: ports-head MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit X-BeenThere: svn-ports-head@freebsd.org X-Mailman-Version: 2.1.21 Precedence: list List-Id: SVN commit messages for the ports tree for head List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 24 Mar 2016 20:30:34 -0000 Author: romain Date: Thu Mar 24 20:30:33 2016 New Revision: 411810 URL: https://svnweb.freebsd.org/changeset/ports/411810 Log: This is a plugin that provides fine grained action level authorization for agents. Any MCollective agent plugins based on SimpleRPC can be restricted with authorization plugins like this one. WWW: https://github.com/puppetlabs/mcollective-actionpolicy-auth Added: head/sysutils/mcollective-actionpolicy-auth/ head/sysutils/mcollective-actionpolicy-auth/Makefile (contents, props changed) head/sysutils/mcollective-actionpolicy-auth/distinfo (contents, props changed) head/sysutils/mcollective-actionpolicy-auth/files/ head/sysutils/mcollective-actionpolicy-auth/files/pkg-message.in (contents, props changed) head/sysutils/mcollective-actionpolicy-auth/pkg-descr (contents, props changed) Modified: head/sysutils/Makefile Modified: head/sysutils/Makefile ============================================================================== --- head/sysutils/Makefile Thu Mar 24 20:16:59 2016 (r411809) +++ head/sysutils/Makefile Thu Mar 24 20:30:33 2016 (r411810) @@ -544,6 +544,7 @@ SUBDIR += mbgtools SUBDIR += mcelog SUBDIR += mcollective + SUBDIR += mcollective-actionpolicy-auth SUBDIR += mcollective-nettest-agent SUBDIR += mcollective-nettest-client SUBDIR += mcollective-nettest-common Added: head/sysutils/mcollective-actionpolicy-auth/Makefile ============================================================================== --- /dev/null 00:00:00 1970 (empty, because file is newly added) +++ head/sysutils/mcollective-actionpolicy-auth/Makefile Thu Mar 24 20:30:33 2016 (r411810) @@ -0,0 +1,31 @@ +# $FreeBSD$ + +PORTNAME= mcollective-actionpolicy-auth +PORTVERSION= 2.1.0 +CATEGORIES= sysutils + +MAINTAINER= romain@FreeBSD.org +COMMENT= MCollective Authorization plugin allowing fine grained ACLs + +LICENSE= APACHE20 + +RUN_DEPENDS= mcollective>=2:${PORTSDIR}/sysutils/mcollective + +USE_GITHUB= yes +GH_ACCOUNT= puppetlabs +SUB_FILES= pkg-message + +NO_BUILD= yes +NO_ARCH= yes + +PLIST_FILES= share/mcollective/util/actionpolicy.ddl \ + share/mcollective/util/actionpolicy.rb +PLIST_DIRS= etc/mcollective/policies + +.if !target(do-install) +do-install: + cd ${WRKSRC} && ${COPYTREE_SHARE} "util" ${STAGEDIR}${PREFIX}/share/mcollective + ${MKDIR} ${STAGEDIR}${PREFIX}/etc/mcollective/policies +.endif + +.include Added: head/sysutils/mcollective-actionpolicy-auth/distinfo ============================================================================== --- /dev/null 00:00:00 1970 (empty, because file is newly added) +++ head/sysutils/mcollective-actionpolicy-auth/distinfo Thu Mar 24 20:30:33 2016 (r411810) @@ -0,0 +1,2 @@ +SHA256 (puppetlabs-mcollective-actionpolicy-auth-2.1.0_GH0.tar.gz) = e824a8c98c3ef3efcb723a0d0983c7a17e68a5d34646fd303bf1d8d221f76d58 +SIZE (puppetlabs-mcollective-actionpolicy-auth-2.1.0_GH0.tar.gz) = 11900 Added: head/sysutils/mcollective-actionpolicy-auth/files/pkg-message.in ============================================================================== --- /dev/null 00:00:00 1970 (empty, because file is newly added) +++ head/sysutils/mcollective-actionpolicy-auth/files/pkg-message.in Thu Mar 24 20:30:33 2016 (r411810) @@ -0,0 +1,7 @@ +************************************************************************ +Add the following lines to %%PREFIX%%/etc/mcollective/server.cfg to +enable the mcollective-actionpolicy-auth plugin: + +rpcauthorization = 1 +rpcauthprovider = action_policy +************************************************************************ Added: head/sysutils/mcollective-actionpolicy-auth/pkg-descr ============================================================================== --- /dev/null 00:00:00 1970 (empty, because file is newly added) +++ head/sysutils/mcollective-actionpolicy-auth/pkg-descr Thu Mar 24 20:30:33 2016 (r411810) @@ -0,0 +1,5 @@ +This is a plugin that provides fine grained action level authorization for +agents. Any MCollective agent plugins based on SimpleRPC can be restricted with +authorization plugins like this one. + +WWW: https://github.com/puppetlabs/mcollective-actionpolicy-auth