1 # Bundling request for bootstrap/patternfly: https://fedorahosted.org/fpc/ticket/483
5 Release: 2%{?builddate}%{?gittag}%{?dist}
6 Summary: An Identity Provider Server
8 Group: System Environment/Base
10 URL: https://fedorahosted.org/ipsilon/
11 Source0: https://fedorahosted.org/released/ipsilon/ipsilon-%{version}.tar.gz
15 BuildRequires: python2-devel
16 BuildRequires: python-setuptools
17 BuildRequires: lasso-python
18 BuildRequires: python-openid, python-openid-cla, python-openid-teams
19 BuildRequires: m2crypto
21 Requires: python-requests
22 Requires: %{name}-base = %{version}-%{release}
26 Ipsilon is a multi-protocol Identity Provider service. Its function is to
27 bridge authentication providers and applications to achieve Single Sign On
32 Summary: Ipsilon base IDP server
33 Group: System Environment/Base
37 Requires: %{name}-filesystem = %{version}-%{release}
38 Requires: %{name}-provider = %{version}-%{release}
40 Requires: python-cherrypy
41 Requires: python-jinja2
43 Requires: python-sqlalchemy
44 Requires: open-sans-fonts
45 Requires(pre): shadow-utils
46 Requires(post): %_sbindir/semanage, %_sbindir/restorecon
47 Requires(postun): %_sbindir/semanage
51 The Ipsilon IdP server without installer
55 Summary: Package providing files required by Ipsilon
56 Group: System Environment/Base
59 %description filesystem
60 Package providing basic directory structure required
65 Summary: Tools for configuring Ipsilon clients
66 Group: System Environment/Base
68 Requires: %{name}-filesystem = %{version}-%{release}
69 Requires: %{name}-saml2-base = %{version}-%{release}
70 Requires: mod_auth_mellon
80 Group: System Environment/Base
82 Requires: %{name}-authgssapi = %{version}-%{release}
83 Requires: %{name}-authform = %{version}-%{release}
86 Requires: ipa-admintools
88 Requires: freeipa-client
89 Requires: freeipa-admintools
93 %description tools-ipa
94 Convenience client install tools for IPA support in the Ipsilon identity Provider
99 Group: System Environment/Base
101 Requires: lasso-python
102 Requires: python-lxml
105 %description saml2-base
106 Provides core SAML2 utilities
110 Summary: SAML2 provider plugin
111 Group: System Environment/Base
113 Provides: ipsilon-provider = %{version}-%{release}
114 Requires: %{name} = %{version}-%{release}
115 Requires: %{name}-saml2-base = %{version}-%{release}
119 Provides a SAML2 provider plugin for the Ipsilon identity Provider
123 Summary: Openid provider plugin
124 Group: System Environment/Base
126 Provides: ipsilon-provider = %{version}-%{release}
127 Requires: %{name} = %{version}-%{release}
128 Requires: python-openid
129 Requires: python-openid-cla
130 Requires: python-openid-teams
134 Provides an OpenId provider plugin for the Ipsilon identity Provider
138 Summary: Persona provider plugin
139 Group: System Environment/Base
141 Provides: ipsilon-provider = %{version}-%{release}
142 Requires: %{name} = %{version}-%{release}
147 Provides a Persona provider plugin for the Ipsilon identity Provider
151 Summary: Fedora Authentication System login plugin
152 Group: System Environment/Base
154 Requires: %{name} = %{version}-%{release}
155 Requires: python-fedora
159 Provides a login plugin to authenticate against the Fedora Authentication System
163 Summary: mod_intercept_form_submit login plugin
164 Group: System Environment/Base
166 Requires: %{name} = %{version}-%{release}
167 Requires: mod_intercept_form_submit
170 %description authform
171 Provides a login plugin to authenticate with mod_intercept_form_submit
175 Summary: PAM based login plugin
176 Group: System Environment/Base
178 Requires: %{name} = %{version}-%{release}
183 Provides a login plugin to authenticate against the local PAM stack
187 Summary: mod_auth_gssapi based login plugin
188 Group: System Environment/Base
190 Requires: %{name} = %{version}-%{release}
191 Requires: mod_auth_gssapi
194 %description authgssapi
195 Provides a login plugin to allow authentication via the mod_auth_gssapi
200 Summary: LDAP info and login plugin
201 Group: System Environment/Base
203 Requires: %{name} = %{version}-%{release}
204 Requires: python-ldap
207 %description authldap
208 Provides a login plugin to allow authentication and info retrieval via LDAP.
211 Summary: SSSD & mod_lookup_identity-based identity plugin
212 Group: System Environment/Base
214 Requires: %{name} = %{version}-%{release}
215 Requires: mod_lookup_identity
216 Requires: libsss_simpleifp
217 Requires: sssd >= 1.12.4
220 %description infosssd
221 Provides an info plugin to allow retrieval via mod_lookup_identity and
229 CFLAGS="%{optflags}" %{__python} setup.py build
233 %{__python} setup.py install --skip-build --root %{buildroot}
234 mkdir -p %{buildroot}%{_sbindir}
235 mkdir -p %{buildroot}%{_libexecdir}
236 mkdir -p %{buildroot}%{_defaultdocdir}
237 # These 0700 permissions are because ipsilon will store private keys here
238 install -d -m 0700 %{buildroot}%{_sharedstatedir}/ipsilon
239 install -d -m 0700 %{buildroot}%{_sysconfdir}/ipsilon
240 mv %{buildroot}/%{_bindir}/ipsilon %{buildroot}/%{_libexecdir}
241 mv %{buildroot}/%{_bindir}/ipsilon-server-install %{buildroot}/%{_sbindir}
242 mv %{buildroot}/%{_bindir}/ipsilon-upgrade-database %{buildroot}/%{_sbindir}
243 mv %{buildroot}%{_defaultdocdir}/%{name} %{buildroot}%{_defaultdocdir}/%{name}-%{version}
244 rm -fr %{buildroot}%{python2_sitelib}/tests
245 ln -s %{_datadir}/fonts %{buildroot}%{_datadir}/ipsilon/ui/fonts
248 # The test suite is not being run because:
249 # 1. The last step of %%install removes the entire test suite
250 # 2. It increases build time a lot
251 # 3. It adds more build dependencies (namely postgresql server and client libraries)
254 getent group ipsilon >/dev/null || groupadd -r ipsilon
255 getent passwd ipsilon >/dev/null || \
256 useradd -r -g ipsilon -d %{_sharedstatedir}/ipsilon -s /sbin/nologin \
257 -c "Ipsilon Server" ipsilon
261 semanage fcontext -a -t httpd_var_lib_t '%{_sharedstatedir}/ipsilon(/.*)?' || :
262 semanage fcontext -a -t var_lib_t '%{_sharedstatedir}/ipsilon(/.*)/*.conf' || :
263 restorecon -R %{_sharedstatedir}/ipsilon || :
266 # Clean up after package removal
267 if [ $1 -eq 0 ]; then
268 semanage fcontext -d -t var_lib_t '%{_sharedstatedir}/ipsilon(/.*)/*.conf' || :
269 semanage fcontext -d -t httpd_var_lib_t '%{_sharedstatedir}/ipsilon(/.*)?' || :
275 %dir %{_datadir}/ipsilon
276 %dir %{_datadir}/ipsilon/templates
277 %dir %{_datadir}/ipsilon/templates/install
278 %dir %{python2_sitelib}/ipsilon
279 %{python2_sitelib}/ipsilon/__init__.py*
280 %{python2_sitelib}/ipsilon-*.egg-info
281 %dir %{python2_sitelib}/ipsilon/tools
282 %{python2_sitelib}/ipsilon/tools/__init__.py*
283 %{python2_sitelib}/ipsilon/tools/files.py*
286 %{_sbindir}/ipsilon-server-install
287 %{_sbindir}/ipsilon-upgrade-database
288 %{_datadir}/ipsilon/templates/install/*.conf
289 %{_datadir}/ipsilon/ui/saml2sp
290 %dir %{python2_sitelib}/ipsilon/helpers
291 %{python2_sitelib}/ipsilon/helpers/common.py*
292 %{python2_sitelib}/ipsilon/helpers/__init__.py*
295 %{_defaultdocdir}/%{name}-%{version}
296 %{python2_sitelib}/ipsilon/admin
297 %{python2_sitelib}/ipsilon/rest
298 %{python2_sitelib}/ipsilon/tools/dbupgrade.py*
299 %dir %{python2_sitelib}/ipsilon/login
300 %{python2_sitelib}/ipsilon/login/__init__*
301 %{python2_sitelib}/ipsilon/login/common*
302 %{python2_sitelib}/ipsilon/login/authtest*
303 %dir %{python2_sitelib}/ipsilon/info
304 %{python2_sitelib}/ipsilon/info/__init__*
305 %{python2_sitelib}/ipsilon/info/common*
306 %{python2_sitelib}/ipsilon/info/infonss*
307 %dir %{python2_sitelib}/ipsilon/providers
308 %{python2_sitelib}/ipsilon/providers/__init__*
309 %{python2_sitelib}/ipsilon/providers/common*
310 %{python2_sitelib}/ipsilon/root.py*
311 %{python2_sitelib}/ipsilon/util
312 %{_mandir}/man*/ipsilon*
313 %{_datadir}/ipsilon/templates/*.html
314 %{_datadir}/ipsilon/templates/admin
315 %dir %{_datadir}/ipsilon/templates/login
316 %{_datadir}/ipsilon/templates/login/index.html
317 %{_datadir}/ipsilon/templates/login/form.html
318 %dir %{_datadir}/ipsilon/ui
319 %{_datadir}/ipsilon/ui/css
320 %{_datadir}/ipsilon/ui/img
321 %{_datadir}/ipsilon/ui/js
322 %{_datadir}/ipsilon/ui/fonts
323 %{_libexecdir}/ipsilon
324 %dir %attr(0751,root,root) %{_sharedstatedir}/ipsilon
325 %dir %attr(0751,root,root) %{_sysconfdir}/ipsilon
328 %{_bindir}/ipsilon-client-install
329 %{_datadir}/ipsilon/templates/install/saml2
332 %{python2_sitelib}/ipsilon/helpers/ipa.py*
335 %{python2_sitelib}/ipsilon/tools/saml2metadata.py*
336 %{python2_sitelib}/ipsilon/tools/certs.py*
339 %{python2_sitelib}/ipsilon/providers/saml2*
340 %{_datadir}/ipsilon/templates/saml2
343 %{python2_sitelib}/ipsilon/providers/openid*
344 %{_datadir}/ipsilon/templates/openid
347 %{python2_sitelib}/ipsilon/providers/persona*
348 %{_datadir}/ipsilon/templates/persona
351 %{python2_sitelib}/ipsilon/login/authfas*
354 %{python2_sitelib}/ipsilon/login/authform*
357 %{python2_sitelib}/ipsilon/login/authpam*
360 %{python2_sitelib}/ipsilon/login/authgssapi*
361 %{_datadir}/ipsilon/templates/login/gssapi.html
364 %{python2_sitelib}/ipsilon/login/authldap*
365 %{python2_sitelib}/ipsilon/info/infoldap*
368 %{python2_sitelib}/ipsilon/info/infosssd.*
371 * Mon Jun 22 2015 Patrick Uiterwijk <puiterwijk@redhat.com> - 1.0.0-2
372 - Added mod_ssl requirement for ipsilon-client
374 * Mon May 11 2015 Patrick Uiterwijk <puiterwijk@redhat.com> - 1.0.0-1
377 * Wed Apr 15 2015 Patrick Uiterwijk <puiterwijk@redhat.com> - 0.6.0-1
380 * Mon Mar 30 2015 Patrick Uiterwijk <puiterwijk@redhat.com> - 0.5.0-1
383 * Fri Feb 27 2015 Patrick Uiterwijk <puiterwijk@redhat.com> - 0.4.0-1
386 * Tue Feb 24 2015 Patrick Uiterwijk <puiterwijk@redhat.com> - 0.3.0-7
387 - Split the installer into -tools
388 - Split authform into -authform
390 * Thu Feb 12 2015 Rob Crittenden <rcritten@redhat.com> - 0.3.0-6
391 - Add mod_identity_lookup info plugin package
393 * Wed Jan 28 2015 Patrick Uiterwijk <puiterwijk@redhat.com> - 0.3.0-5
396 * Mon Jan 12 2015 Patrick Uiterwijk <puiterwijk@redhat.com> - 0.3.0-4
397 - Add symlink to fonts directory
399 * Tue Dec 16 2014 Patrick Uiterwijk <puiterwijk@redhat.com> - 0.3.0-3
401 - Add comments on why the test suite is not in check
402 - The subpackages require the base package
403 - Add link to FPC ticket for bundling exception request
405 * Tue Dec 16 2014 Patrick Uiterwijk <puiterwijk@redhat.com> - 0.3.0-2
406 - Fix shebang removal
408 * Tue Dec 16 2014 Patrick Uiterwijk <puiterwijk@redhat.com> - 0.3.0-1