Package pam_pkcs11: Specfile
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 | # vim: set ft=spec: -*- rpm -spec -*- Name: pam_pkcs11 Version: 0.6.4 Release: alt2 Summary: PKCS #11 PAM Module and Login Tools Group: System/Base License: LGPL Url: http://www.opensc-project.org/pam_pkcs11/ Source: %name-%version.tar Patch: %name-%version-%release.patch # Automatically added by buildreq on Fri Jul 31 2009 (-bi) BuildRequires: cvs docbook-style-xsl flex libldap-devel libpam-devel libpcsclite-devel libssl-devel xsltproc %description This Linux-PAM login module allows a X.509 certificate based user login. The certificate and its dedicated private key are thereby accessed by means of an appropriate PKCS #11 module. For the verification of the users' certificates, locally stored CA certificates as well as either online or locally accessible CRLs are used. Adittional included pam_pkcs11 related tools: - pkcs11_eventmgr: Generate actions on card insert/removal/timeout events - pklogin_finder: Get the loginname that maps to a certificate - pkcs11_inspect: Inspect the contents of a certificate %package pcsc Summary: PCSC-Lite extra tools for pam_pkcs11 Group: System/Base Requires: %name = %version-%release %description pcsc This package contains pam_pkcs11 tools that relies on PCSC-Lite library: - card_eventmgr: Generate card insert/removal events. %package ldap Summary: LDAP Cert-to-Login mapper for pam_pkcs11 Group: System/Base Requires: %name = %version-%release %description ldap This package contains a Certificate-To-Login mapper based on queries to a LDAP server. As it depends on extra libraries, is distributed as a separate package. - ldap_mapper.so: LDAP-based mapper module. %prep %setup %patch -p1 # fixup configs sed -i -e ' s,/usr/lib/pam_pkcs11/,/%_lib/%name/,g; s,/usr/lib/,%_libdir/,g; s,/etc/pam_pkcs11/,%_sysconfdir/security/%name/,g; ' etc/*.example doc/*.in doc/*.xml %build %autoreconf %configure \ --libdir=/%_lib \ --disable-static \ --enable-shared \ --with-confdir=%_sysconfdir/security/%name \ # %make_build %install %makeinstall_std mkdir -p %buildroot%_sysconfdir/security/%name/{cacerts,crls} for f in pam_pkcs11.conf card_eventmgr.conf pkcs11_eventmgr.conf; do install -pm644 "etc/$f.example" "%buildroot%_sysconfdir/security/%name/$f" done %find_lang %name %files -f %name.lang %doc AUTHORS README %doc doc/pam_pkcs11.html %doc doc/mappers_api.html %doc doc/README.autologin %doc doc/README.mappers %dir %_sysconfdir/security/%name %dir %_sysconfdir/security/%name/cacerts %dir %_sysconfdir/security/%name/crls %config(noreplace) %_sysconfdir/security/%name/pam_pkcs11.conf %config(noreplace) %_sysconfdir/security/%name/pkcs11_eventmgr.conf %_bindir/pkcs11_eventmgr %_bindir/pklogin_finder %_bindir/pkcs11_inspect %_bindir/pkcs11_listcerts %_bindir/pkcs11_setup %dir /%_lib/%name /%_lib/%name/openssh_mapper.so /%_lib/%name/opensc_mapper.so %_pam_modules_dir/pam_pkcs11.so %_man1dir/pkcs11_eventmgr.1* %_man1dir/pkcs11_inspect.1* %_man1dir/pkcs11_listcerts.1* %_man1dir/pkcs11_setup.1* %_man1dir/pklogin_finder.1* %_man8dir/pam_pkcs11.8* %dir %_datadir/%name %_datadir/%name/pam_pkcs11.conf.example %_datadir/%name/pam.d_login.example %_datadir/%name/subject_mapping.example %_datadir/%name/mail_mapping.example %_datadir/%name/digest_mapping.example %_datadir/%name/pkcs11_eventmgr.conf.example %files pcsc %doc doc/README.eventmgr %config(noreplace) %_sysconfdir/security/%name/card_eventmgr.conf %_bindir/card_eventmgr %_mandir/man1/card_eventmgr.1.gz %_datadir/%name/card_eventmgr.conf.example %files ldap %doc doc/README.ldap_mapper /%_lib/%name/ldap_mapper.so %changelog * Mon Jul 16 2012 Vitaly Kuznetsov <vitty@altlinux.ru> 0.6.4-alt2 - fix build * Wed Dec 08 2010 Igor Vlasenko <viy@altlinux.ru> 0.6.4-alt1.1 - rebuild with new openssl and/or boost by request of git.alt administrator * Mon Jun 28 2010 Alexey I. Froloff <raorn@altlinux.org> 0.6.4-alt1 - [0.6.4] * Tue Oct 06 2009 Alexey I. Froloff <raorn@altlinux.org> 0.6.1-alt5 - Ask PIN only if there are any certificates that can be mapped to user * Sat Sep 05 2009 Alexey I. Froloff <raorn@altlinux.org> 0.6.1-alt4 - Fix buffer overflow in non-POSIX locales * Sun Aug 23 2009 Alexey I. Froloff <raorn@altlinux.org> 0.6.1-alt3 - Russian translations updated * Fri Jul 31 2009 Alexey I. Froloff <raorn@altlinux.org> 0.6.1-alt2 - Document moar pam_pkcs11 options in default config - cert_policy: global_ca - use system-wide cert storage when verifying certificates - Fix paths in manpages and documentation - Dropped make_hash_links.sh in favor of c_rehash (openssl) * Tue Jul 21 2009 Alexey I. Froloff <raorn@altlinux.org> 0.6.1-alt1 - Built for Sisyphus |