4 Summary: Open source system for attribute-based Web SSO
5 Group: System Environment/Libraries
8 URL: http://shibboleth.internet2.edu/
9 Source: %{name}-sp-%{version}.tar.gz
10 BuildRoot: %{_tmppath}/%{name}-%{version}-root
11 %if 0%{?suse_version} > 1030
12 BuildRequires: libXerces-c-devel >= 2.8.0
13 BuildRequires: libxml-security-c-devel >= 1.4.0
14 BuildRequires: libxmltooling-devel >= 1.2
15 BuildRequires: libsaml-devel >= 2.2
16 %{?_with_log4cpp:BuildRequires: liblog4cpp-devel >= 1.0}
17 %{!?_with_log4cpp:BuildRequires: liblog4shib-devel}
19 BuildRequires: xerces%{?xercesver}-c-devel >= 2.8.0
20 BuildRequires: xml-security-c-devel >= 1.4.0
21 BuildRequires: xmltooling-devel >= 1.2
22 BuildRequires: opensaml-devel >= 2.2
23 %{?_with_log4cpp:BuildRequires: log4cpp-devel >= 1.0}
24 %{!?_with_log4cpp:BuildRequires: log4shib-devel}
26 BuildRequires: gcc-c++
27 %{!?_without_doxygen:BuildRequires: doxygen}
28 %{!?_without_odbc:BuildRequires:unixODBC-devel}
29 BuildRequires: zlib-devel
30 %{?_with_fastcgi:BuildRequires: fcgi-devel}
31 %if "%{_vendor}" == "redhat"
32 %{!?_without_builtinapache:BuildRequires: httpd-devel}
34 %if "%{_vendor}" == "suse"
35 %{!?_without_builtinapache:BuildRequires: apache2-devel}
38 %if "%{_vendor}" == "suse"
39 %define pkgdocdir %{_docdir}/%{name}
41 %define pkgdocdir %{_docdir}/%{name}-%{version}
45 Shibboleth is a Web Single Sign-On implementations based on OpenSAML
46 that supports multiple protocols, federated identity, and the extensible
47 exchange of rich attributes subject to privacy controls.
49 This package contains the Shibboleth Service Provider runtime libraries
53 Summary: Shibboleth development Headers
54 Group: Development/Libraries
55 Requires: %{name} = %{version}
56 %if 0%{?suse_version} > 1030
57 Requires: libXerces-c-devel >= 2.8.0
58 Requires: libxml-security-c-devel >= 1.4.0
59 Requires: libxmltooling-devel >= 1.2
60 Requires: libsaml-devel >= 2.2
61 %{?_with_log4cpp:Requires: liblog4cpp-devel >= 1.0}
62 %{!?_with_log4cpp:Requires: liblog4shib-devel}
64 Requires: xerces%{?xercesver}-c-devel >= 2.8.0
65 Requires: xml-security-c-devel >= 1.4.0
66 Requires: xmltooling-devel >= 1.2
67 Requires: opensaml-devel >= 2.2
68 %{?_with_log4cpp:Requires: log4cpp-devel >= 1.0}
69 %{!?_with_log4cpp:Requires: log4shib-devel}
73 Shibboleth is a Web Single Sign-On implementations based on OpenSAML
74 that supports multiple protocols, federated identity, and the extensible
75 exchange of rich attributes subject to privacy controls.
77 This package includes files needed for development with Shibboleth.
84 %configure %{?_without_odbc:--disable-odbc} %{?_without_adfs:--disable-adfs} %{?_with_fastcgi} %{?_with_memcached} %{?shib_options}
85 %{__make} pkgdocdir=%{pkgdocdir}
88 %{__make} install NOKEYGEN=1 DESTDIR=$RPM_BUILD_ROOT pkgdocdir=%{pkgdocdir}
90 %if "%{_vendor}" == "suse"
91 %{__sed} -i "s/\/var\/log\/httpd/\/var\/log\/apache2/g" \
92 $RPM_BUILD_ROOT%{_sysconfdir}/%{name}/native.logger
95 # Plug the SP into the built-in Apache on a recognized system.
98 if [ -f $RPM_BUILD_ROOT%{_libdir}/%{name}/mod_shib_13.so ] ; then
99 APACHE_CONFIG="apache.config"
101 if [ -f $RPM_BUILD_ROOT%{_libdir}/%{name}/mod_shib_20.so ] ; then
102 APACHE_CONFIG="apache2.config"
104 if [ -f $RPM_BUILD_ROOT%{_libdir}/%{name}/mod_shib_22.so ] ; then
105 APACHE_CONFIG="apache22.config"
107 %{?_without_builtinapache:APACHE_CONFIG="no"}
108 if [ "$APACHE_CONFIG" != "no" ] ; then
110 if [ -d %{_sysconfdir}/httpd/conf.d ] ; then
111 APACHE_CONFD="%{_sysconfdir}/httpd/conf.d"
113 if [ -d %{_sysconfdir}/apache2/conf.d ] ; then
114 APACHE_CONFD="%{_sysconfdir}/apache2/conf.d"
116 if [ "$APACHE_CONFD" != "no" ] ; then
117 %{__mkdir} -p $RPM_BUILD_ROOT$APACHE_CONFD
118 %{__cp} -p $RPM_BUILD_ROOT%{_sysconfdir}/%{name}/$APACHE_CONFIG $RPM_BUILD_ROOT$APACHE_CONFD/shib.conf
119 echo "%config $APACHE_CONFD/shib.conf" > rpm.filelist
123 %if "%{_vendor}" == "redhat" || "%{_vendor}" == "suse"
124 # %{_initddir} not yet in RHEL5, use deprecated %{_initrddir}
125 mkdir -p $RPM_BUILD_ROOT%{_initrddir}
126 %{__cp} -p $RPM_BUILD_ROOT%{_sysconfdir}/%{name}/shibd-%{_vendor} $RPM_BUILD_ROOT%{_initrddir}/shibd
127 %{__chmod} 755 $RPM_BUILD_ROOT%{_initrddir}/shibd
134 [ "$RPM_BUILD_ROOT" != "/" ] && %{__rm} -rf $RPM_BUILD_ROOT
137 %ifnos solaris2.8 solaris2.9 solaris2.10
142 cd %{_sysconfdir}/%{name}
145 %if "%{_vendor}" == "redhat"
146 # This adds the proper /etc/rc*.d links for the script
147 /sbin/chkconfig --add shibd
148 # On upgrade, restart components if they're already running.
149 if [ "$1" -gt "1" ] ; then
150 /etc/init.d/shibd status 1>/dev/null && /etc/init.d/shibd restart 1>/dev/null
151 %{!?_without_builtinapache:/etc/init.d/httpd status 1>/dev/null && /etc/init.d/httpd restart 1>/dev/null}
154 %if "%{_vendor}" == "suse"
155 # This adds the proper /etc/rc*.d links for the script
156 /sbin/chkconfig --add shibd
157 cd /usr/sbin && ln -s /etc/init.d/shibd rcshibd
158 # On upgrade, restart components if they're already running.
159 if [ "$1" -gt "1" ] ; then
160 /etc/init.d/shibd status 1>/dev/null && /etc/init.d/shibd restart 1>/dev/null
161 %{!?_without_builtinapache:/etc/init.d/apache2 status 1>/dev/null && /etc/init.d/apache2 restart 1>/dev/null}
166 %if "%{_vendor}" == "redhat"
167 if [ "$1" = 0 ] ; then
168 /sbin/service shibd stop >/dev/null 2>&1
169 /sbin/chkconfig --del shibd
172 %if "%{_vendor}" == "suse"
173 if [ "$1" = 0 ] ; then
174 /sbin/service shibd stop >/dev/null 2>&1
175 /sbin/chkconfig --del shibd
176 cd /usr/sbin && %{__rm} -f rcshibd
180 %ifnos solaris2.8 solaris2.9 solaris2.10
181 %postun -p /sbin/ldconfig
185 # ugly hack if init script got removed during %postun by upgraded (buggy/2.1) package
186 %if "%{_vendor}" == "redhat"
187 if [ ! -f %{_initrddir}/shibd ] ; then
188 if [ -f %{_sysconfdir}/%{name}/shibd-%{_vendor} ] ; then
189 %{__cp} -p %{_sysconfdir}/%{name}/shibd-%{_vendor} %{_initrddir}/shibd
190 %{__chmod} 755 %{_initrddir}/shibd
191 /sbin/chkconfig --add shibd
196 %files -f rpm.filelist
197 %defattr(-,root,root,-)
200 %{_bindir}/resolvertest
201 %{_libdir}/libshibsp.so.*
202 %{_libdir}/libshibsp-lite.so.*
203 %dir %{_libdir}/%{name}
205 %exclude %{_libdir}/%{name}/*.la
206 %dir %{_localstatedir}/log/%{name}
207 %dir %{_localstatedir}/run/%{name}
208 %dir %{_datadir}/xml/%{name}
209 %{_datadir}/xml/%{name}/*
210 %dir %{_sysconfdir}/%{name}
211 %config(noreplace) %{_sysconfdir}/%{name}/*.xml
212 %config(noreplace) %{_sysconfdir}/%{name}/*.html
213 %config(noreplace) %{_sysconfdir}/%{name}/*.logger
214 %if "%{_vendor}" == "redhat" || "%{_vendor}" == "suse"
215 %attr(755, root, root) %{_initrddir}/shibd
217 %{_sysconfdir}/%{name}/*.dist
218 %{_sysconfdir}/%{name}/apache*.config
219 %{_sysconfdir}/%{name}/shibd-*
220 %attr(755, root, root) %{_sysconfdir}/%{name}/keygen.sh
221 %attr(755, root, root) %{_sysconfdir}/%{name}/metagen.sh
222 %{_sysconfdir}/%{name}/*.xsl
224 %exclude %{pkgdocdir}/api
227 %defattr(-,root,root,-)
229 %{_libdir}/libshibsp.so
230 %{_libdir}/libshibsp-lite.so
231 %doc %{pkgdocdir}/api
234 * Mon Aug 10 2009 Scott Cantor <cantor.2@osu.edu> - 2.2.1-1
235 - Doc handling changes
238 * Tue Aug 4 2009 Scott Cantor <cantor.2@osu.edu> - 2.2.1-1
239 - Initial version for 2.2.1, with shibd/httpd restart on upgrade
241 * Thu Jun 25 2009 Scott Cantor <cantor.2@osu.edu> - 2.2-3
242 - Add additional cleanup to posttrans fix
244 * Tue Jun 23 2009 Scott Cantor <cantor.2@osu.edu> - 2.2-2
245 - Reverse without_builtinapache macro test
246 - Fix init script handling on Red Hat to handle upgrades
248 * Wed Dec 3 2008 Scott Cantor <cantor.2@osu.edu> - 2.2-1
249 - Bump minor version.
250 - Make keygen.sh executable.
251 - Fixing SUSE Xerces dependency name.
252 - Optionally package shib.conf.
254 * Tue Jun 10 2008 Scott Cantor <cantor.2@osu.edu> - 2.1-1
255 - Change shib.conf handling to treat as config file.
257 * Mon Mar 17 2008 Scott Cantor <cantor.2@osu.edu> - 2.0-6
260 * Fri Jan 18 2008 Scott Cantor <cantor.2@osu.edu> - 2.0-5
261 - Release candidate 1.
263 * Sun Oct 21 2007 Scott Cantor <cantor.2@osu.edu> - 2.0-4
264 - libexec -> lib/shibboleth changes
265 - Added doc subpackage
267 * Thu Aug 16 2007 Scott Cantor <cantor.2@osu.edu> - 2.0-3
270 * Fri Jul 13 2007 Scott Cantor <cantor.2@osu.edu> - 2.0-2
271 - Second alpha release.
273 * Sun Jun 10 2007 Scott Cantor <cantor.2@osu.edu> - 2.0-1
274 - First alpha release.
276 * Mon Oct 2 2006 Scott Cantor <cantor.2@osu.edu> - 1.3-11
277 - Applied fix for secadv 20061002
278 - Fix for metadata loader loop
280 * Wed Jun 15 2006 Scott Cantor <cantor.2@osu.edu> - 1.3-10
281 - Applied fix for sec 20060615
283 * Fri Apr 15 2006 Scott Cantor <cantor.2@osu.edu> - 1.3-9
284 - Misc. patches, SuSE, Apache 2.2, gcc 4.1, and 64-bit support
286 * Mon Jan 9 2006 Scott Cantor <cantor.2@osu.edu> - 1.3-8
287 - Applied new fix for secadv 20060109
289 * Tue Nov 8 2005 Scott Cantor <cantor.2@osu.edu> - 1.3-7
290 - Applied new fix for secadv 20050901 plus rollup
292 * Fri Sep 23 2005 Scott Cantor <cantor.2@osu.edu> - 1.3-6
293 - Minor patches and default config changes
295 - Fix shib.conf creation
296 - Integrated init.d script
297 - Prevent replacement of config files
299 * Thu Sep 1 2005 Scott Cantor <cantor.2@osu.edu> - 1.3-5
300 - Applied fix for secadv 20050901 plus rollup of NSAPI fixes
302 * Sun Apr 24 2005 Scott Cantor <cantor.2@osu.edu> - 1.3-1
303 - Updated test programs and location of schemas.
304 - move siterefresh to to sbindir
306 * Fri Apr 1 2005 Derek Atkins <derek@ihtfp.com> - 1.3-1
307 - Add selinux-targeted-policy package
308 - move shar to sbindir
310 * Tue Oct 19 2004 Derek Atkins <derek@ihtfp.com> - 1.2-1
311 - Create SPEC file based on various versions in existence.