shibd-osx.plist \
apache.config \
apache2.config \
- apache22.config
+ apache22.config \
+ keygen.sh
# The config files are installed "special". Unlike the entries in
# pkgsysconf_DATA, these files are installed as "foo.dist" and only
fi; \
$(INSTALL_DATA) $(srcdir)/$$f $(DESTDIR)${pkgsysconfdir}/$$f.dist; \
done
+ if test -z $NOKEYGEN ; then
+ cd $(DESTDIR)$(pkgsysconfdir)
+ sh ./keygen.sh -b
+ fi
CLEANFILES = \
apache.config \
:opt_start\r
set PARAM=%1\r
if not defined PARAM goto opt_end\r
-if %1==-cn goto opt_fqdn\r
-if %1==-years goto opt_years\r
+if %1==-h goto opt_fqdn\r
+if %1==-y goto opt_years\r
goto usage\r
:opt_end\r
\r
goto opt_start\r
\r
:usage\r
-echo usage: keygen [-cn cert common name to use] [-years years to issue cert]\r
+echo usage: keygen [-h hostname/cn for cert] [-y years to issue cert]\r
exit /b\r
\r
:guess_fqdn\r
--- /dev/null
+#! /bin/sh\r
+\r
+while getopts h:y:b c\r
+ do\r
+ case $c in\r
+ b) BATCH=1;;\r
+ h) FQDN=$OPTARG;;\r
+ y) DAYS=$OPTARG;;\r
+ \?) echo keygen [-h hostname/cn for cert] [-y years to issue cert]\r
+ exit 1;;\r
+ esac\r
+ done\r
+\r
+if [ -e sp-key.pem ] || [ -e sp-cert.pem ] ; then\r
+ if [ -z $BATCH ] ; then \r
+ echo The files sp-key.pem and/or sp-cert.pem already exist!\r
+ exit 2\r
+ fi\r
+ exit 0\r
+fi\r
+\r
+if [ -z $FQDN ] ; then\r
+ FQDN=`hostname`\r
+fi\r
+\r
+if [ -z $DAYS ] ; then\r
+ DAYS=10\r
+fi\r
+\r
+DAYS=$(($DAYS*365))\r
+\r
+openssl req -x509 -days $DAYS -newkey rsa:2048 -nodes -keyout sp-key.pem -out sp-cert.pem -subj /CN=$FQDN -extensions usr_cert -set_serial 0\r
fi;
done
+sh ./keygen.sh -b
+
exit 0
%install
[ "$RPM_BUILD_ROOT" != "/" ] && %{__rm} -rf $RPM_BUILD_ROOT
-%{__make} install DESTDIR=$RPM_BUILD_ROOT
+%{__make} install NOKEYGEN=1 DESTDIR=$RPM_BUILD_ROOT
%if "%{_vendor}" == "suse"
%{__sed} -i "s/\/var\/log\/httpd/\/var\/log\/apache2/g" \
fi
%endif
+# Key generation
+cd %{_sysconfdir}/%{name}
+sh ./keygen.sh -b
+
%postun
%ifnos solaris2.8 solaris2.9 solaris2.10
/sbin/ldconfig
%{_sysconfdir}/%{name}/shibd-redhat
%{_sysconfdir}/%{name}/shibd-debian
%{_sysconfdir}/%{name}/shibd-osx.plist
+%{_sysconfdir}/%{name}/keygen.sh
%docdir %{_datadir}/doc/%{name}
%{_datadir}/doc/%{name}/CREDITS.txt
%{_datadir}/doc/%{name}/FASTCGI.LICENSE