Package alterator-auth: Specfile
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159 160 161 162 163 164 165 166 167 168 169 170 171 172 173 174 175 176 177 178 179 180 181 182 183 184 185 186 187 188 189 190 191 192 193 194 195 196 197 198 199 200 201 202 203 204 205 206 207 208 209 210 211 212 213 214 215 216 217 218 219 220 221 222 223 224 225 226 227 228 229 230 231 232 233 234 235 236 237 238 239 240 241 242 243 244 245 246 247 248 249 250 251 252 253 254 255 256 257 258 259 260 261 262 263 264 265 266 267 268 269 270 271 272 273 274 275 276 277 278 279 280 281 282 283 284 285 286 287 288 289 290 291 292 293 294 295 296 297 298 299 300 301 302 303 304 305 306 307 308 309 310 311 312 313 314 315 316 317 318 319 320 321 322 323 324 325 326 327 328 329 330 331 332 333 334 335 336 337 338 339 340 341 342 343 344 345 346 347 348 349 350 351 352 353 354 355 356 357 358 359 360 361 362 363 364 365 366 367 368 369 370 371 372 373 374 375 376 377 378 379 380 381 382 383 384 385 386 387 388 389 390 391 392 393 394 395 396 397 398 399 400 401 402 403 404 405 406 407 408 409 410 411 412 413 414 415 416 417 418 419 420 421 422 423 424 425 426 427 | %define _hooksdir %_sysconfdir/hooks/hostname.d Name: alterator-auth Version: 0.37 Release: alt1 %filter_from_requires /^samba-common$/d;/systemd-services/d Source:%name-%version.tar Summary: Alterator module for system wide auth settings License: GPL Group: System/Configuration/Other Requires: alterator >= 4.7-alt4 Requires: alterator-l10n >= 2.0-alt1 Requires: pam-config >= 1.7.0-alt1 Requires: pam_krb5 Requires: nss-ldap Requires: libnss-myhostname Requires: avahi-daemon Requires: settime-rfc867 Requires: bind-utils Conflicts: alterator-fbi < 5.9-alt2 Conflicts: alterator-lookout < 1.6-alt6 Provides: alterator-nsswitch = %version Obsoletes: alterator-nsswitch BuildPreReq: alterator >= 5.0 alterator-lookout %ifarch %e2k BuildRequires: guile20-devel libguile20-devel %else BuildRequires: guile22-devel %endif %description Alterator module for system wide auth settings %package -n task-auth-ad-winbind Summary: Metapackage to authenticate in Active Directory domain by winbind Group: System/Configuration/Other Requires: alterator-auth Requires: samba-winbind Requires: samba-winbind-clients Requires: samba-common-tools Requires: krb5-kinit Requires: pam_mount Requires: libnss-role Requires: alterator-datetime %description -n task-auth-ad-winbind Metapackage to authenticate in Active Directory domain by Winbind. %package -n task-auth-ad-sssd Summary: Metapackage to authenticate in Active Directory domain by sssd Group: System/Configuration/Other Requires: alterator-auth Requires: sssd-ad Requires: samba-common-tools Requires: krb5-kinit Requires: pam_mount Requires: libnss-role Requires: alterator-datetime Provides: task-auth-ad = %EVR Obsoletes: task-auth-ad < %EVR %description -n task-auth-ad-sssd Metapackage to authenticate in Active Directory domain by SSSD. %package -n task-auth-freeipa Summary: Metapackage to authenticate in FreeIPA domain Group: System/Configuration/Other Requires: alterator-auth Requires: freeipa-client Requires: krb5-kinit Requires: pam_mount Requires: libnss-role Requires: alterator-datetime %description -n task-auth-freeipa Metapackage to authenticate in FreeIPA domain. %prep %setup -q %build %make_build libdir=%_libdir %install export GUILE_LOAD_PATH=/usr/share/alterator/lookout %makeinstall install -Dpm644 etc/user-groups %buildroot%_sysconfdir/alterator/auth/user-groups install -Dpm644 etc/admin-groups %buildroot%_sysconfdir/alterator/auth/admin-groups install -Dpm755 sbin/system-auth %buildroot/%_sbindir/system-auth install -Dpm755 hooks/auth %buildroot/%_hooksdir/90-auth %files %config(noreplace) %_sysconfdir/alterator/auth/user-groups %config(noreplace) %_sysconfdir/alterator/auth/admin-groups %_alterator_datadir/applications/* %_alterator_datadir/ui/*/ %_alterator_libdir/ui/auth/*.go %_sbindir/system-auth %_hooksdir/90-auth %_alterator_backend3dir/* %files -n task-auth-ad-winbind %files -n task-auth-ad-sssd %files -n task-auth-freeipa %changelog * Wed Oct 03 2018 Alexey Sheplyakov <asheplyakov@altlinux.org> 0.37-alt1 - AD: configure sssd to obey the group policy - AD: correctly update the (A) DNS record of the newly joined host * Tue May 08 2018 Andrey Cherepanov <cas@altlinux.org> 0.36-alt1 - Change entry files for ALT Domain from combobox to inputbox to support Astra Linux Directory. - Check domain name in DNS first in AD and FreeIPA join. - Add -d option for system-auth to show debug output. - Do not change hostname during join process (ALT #33723). - Fix typo in service file name (ALT #33224). * Fri Apr 13 2018 Grigory Ustinov <grenka@altlinux.org> 0.35-alt1.1.1 - NMU: Replace BuildRequires for guile on e2k arch. * Wed May 17 2017 Andrey Cherepanov <cas@altlinux.org> 0.35-alt1 - Remove gvfs-shares from task-auth-* metapackages (ALT #33481) - Hide non-existing services list (ALT #33371) - Hide roleadd warnings about non-existing groups (ALT #33372) * Thu Apr 06 2017 Andrey Cherepanov <cas@altlinux.org> 0.34-alt1 - task-auth-ad now is provided by task-auth-ad-sssd - Samba config cleanup, disable wins support - Disable service nscd for sssd * Wed Mar 29 2017 Andrey Cherepanov <cas@altlinux.org> 0.33.1-alt1 - Wrap long line in warning * Wed Mar 29 2017 Andrey Cherepanov <cas@altlinux.org> 0.33-alt1 - Package task-auth-ad is not enough to auth with Active Directory because it uses non-recommended winbind - [Active Directory] Fix DNS and Kerberos configuration - Supress grep output in ipa_domain check * Wed Mar 01 2017 Andrey Cherepanov <cas@altlinux.org> 0.32.1-alt1 - Do not strict require ipa-client-install * Tue Feb 28 2017 Andrey Cherepanov <cas@altlinux.org> 0.32-alt1 - Support join to FreeIPA domain * Mon Feb 13 2017 Andrey Cherepanov <cas@altlinux.org> 0.31-alt1 - Add new metapackage task-auth-ad-sssd for configure auth by SSSD - Support SSSD for auth in Active Directory * Tue Jan 31 2017 Andrey Cherepanov <cas@altlinux.org> 0.30.3-alt1 - Workaround to fix https://bugs.altlinux.org/32139 for system with old libshell - [SUCCESS=merge] in nsswitch.conf is supported only in glibc-core >= 2.23. Remove this option for earlier version * Thu Dec 29 2016 Andrey Cherepanov <cas@altlinux.org> 0.30.2-alt2 - Remove hostnamectl (systemd-services) from requirements * Wed Dec 28 2016 Andrey Cherepanov <cas@altlinux.org> 0.30.2-alt1 - Set local hostname and set krb5_ccache_type to KEYRING - Require gvfs-shares in task-auth-ad * Tue Dec 27 2016 Andrey Cherepanov <cas@altlinux.org> 0.30.1-alt1 - Fix nss role behaviour (use domain names and place in nsswitch.conf) * Mon Dec 26 2016 Andrey Cherepanov <cas@altlinux.org> 0.30.0-alt1 - Edit existing Kerberos configuration instead of use winbind to retrieve Kerberos config (ALT #32342, #32937) - Set winbind enum users and groups to `no` to prevent lags in large networks - Check task-auth-ad package installed instead of winbind service to get complete list of requirements - Map domain groups to local Unix groups - Add gvfs stuff to task-auth-ad for shares mount - Set time sync from dc for client - Adapt LightDM for too many domain users: remove user list and language chooser (such as Windows login screen) * Fri Nov 18 2016 Andrey Cherepanov <cas@altlinux.org> 0.29.7-alt1 - Wait 10 seconds for winbind to create krb5.conf file (ALT #32759) * Fri Oct 14 2016 Andrey Cherepanov <cas@altlinux.org> 0.29.6-alt1 - Support offline login and set more usable parameters for pam_winbind - Register machine in domain DNS during Active Directory join - Show real error from system-auth if it exists - Fix domain name detection in resolvconf - Add bind-utils for troubleshooting * Mon Aug 01 2016 Andrey Cherepanov <cas@altlinux.org> 0.29.5-alt2 - Add metapackage task-auth-ad to setup authentication in Active Directory domain * Mon Jul 11 2016 Andrey Cherepanov <cas@altlinux.org> 0.29.5-alt1 - Fix join to Active Directory domain in some cases: - Increase available idmap range from 10.000 to 20 millions - Use system keytab for share files to domain users - Require libnss-myhostname to prevent "DNS update failed!" error (see https://lists.samba.org/archive/samba/2009-June/148869.html) - Check Nebios name length (shoud not be more 15 chars) both in script and form - Inform user to succesful join to Active Directory domain * Fri Jun 10 2016 Anton V. Boyarshinov <boyarsh@altlinux.org> 0.29.4-alt1 - "group: files [SUCCESS=merge] ldap" for glibc groups merging * Wed Jun 01 2016 Andrey Cherepanov <cas@altlinux.org> 0.29.3-alt1 - Fix Kerberos environment prepare by winbind - Comment out unused parameters - Support WINS in Samba config file * Fri Nov 27 2015 Andrey Cherepanov <cas@altlinux.org> 0.29.2-alt1 - Replace entire section [global] in /etc/samba/smb.conf by new config - Support mapping parameters both for Samba 3.x and 4.x * Fri Sep 25 2015 Andrey Cherepanov <cas@altlinux.org> 0.29.1-alt1 - Read domain name from domain parameter of resolvconf -l * Thu Apr 23 2015 Andrey Cherepanov <cas@altlinux.org> 0.29-alt1 - Enable service settime-rfc867 for ALT domain - Add settime-rfc867 to requirements - Support both sysvinit and systemd services * Wed Apr 22 2015 Andrey Cherepanov <cas@altlinux.org> 0.28-alt1 - Sync time with DC before join to Active Directory domain - Check available of /usr/bin/net for join to AD - Set idmap range to 10000-20000 and disable master role by default for Active Directory auth (useful for KDM using MaxShowUID=29999) - Autofill Active Directory domain name from DNS information - Usability improvements - system-auth: show usage infomation and program version * Fri Mar 13 2015 Andrey Cherepanov <cas@altlinux.org> 0.27-alt1 - Support Active Directory authentication in GUI (ALT #30021) * Tue Mar 03 2015 Andrey Cherepanov <cas@altlinux.org> 0.26.1-alt1 - [system-auth] Disable old scheme services only on scheme change * Thu Feb 19 2015 Andrey Cherepanov <cas@altlinux.org> 0.26-alt1 - Add support of Active Directory auth in system-auth - Do not require ldap-user-tools for list local configured LDAP DNs (ALT #24180) - Fix fatal exit in backend if avahi-daemon is not running - Fix typo (ALT #25930) - Package ini-config helper for set parameters in ini files * Thu Jan 24 2013 Andrey Cherepanov <cas@altlinux.org> 0.25-alt3 - Fix system-auth write with nss-ldapd * Fri Nov 30 2012 Anton V. Boyarshinov <boyarsh@altlinux.ru> 0.25-alt2 - setting ccreds checkbox state added * Thu Nov 29 2012 Anton V. Boyarshinov <boyarsh@altlinux.ru> 0.25-alt1 - add simple pam_ccreds support (without status and constraints) * Tue Nov 13 2012 Andrey Cherepanov <cas@altlinux.org> 0.24-alt4 - Fix check avahi-daemon under systemd * Mon Nov 12 2012 Andrey Cherepanov <cas@altlinux.org> 0.24-alt3 - Check avahi-daemon activity in more convinent way compatible with systemd * Sat Nov 03 2012 Andrey Cherepanov <cas@altlinux.org> 0.24-alt2 - Don't hide local base selection if avahi-daemon is stopped * Wed Oct 31 2012 Andrey Cherepanov <cas@altlinux.org> 0.24-alt1 - Autostart nslcd daemon if ldap or krb5 authentication is used - Warning about stopped avahi-daemon - Add avahi-daemon in requires * Thu Oct 04 2012 Andrey Cherepanov <cas@altlinux.org> 0.23-alt1 - Support nss-ldapd * Thu Apr 19 2012 Mikhail Efremov <sem@altlinux.org> 0.22-alt5 - Add string for translation. - Improve warning message. * Wed Apr 18 2012 Mikhail Efremov <sem@altlinux.org> 0.22-alt4 - Always show warning message. * Tue Apr 17 2012 Mikhail Efremov <sem@altlinux.org> 0.22-alt3 - Show warning message about reboots necessity. * Fri Mar 18 2011 Anton V. Boyarshinov <boyarsh@altlinux.ru> 0.22-alt2 - alwais ldaps if kerberos * Thu Mar 17 2011 Anton V. Boyarshinov <boyarsh@altlinux.ru> 0.22-alt1 - set ldaps:// for kerberos domain - requres on nss_ldap added * Fri Oct 01 2010 Anton V. Boyarshinov <boyarsh@altlinux.ru> 0.21-alt1 - fixed domain selection in acc * Sun Apr 11 2010 Dmitriy L. Kruglikov <dkr@altlinux.org> 0.20-alt1 - Refabrisched after wf="form"->wf="none" migration. * Wed Dec 02 2009 Dmitriy L. Kruglikov <dkr@altlinux.org> 0.10-alt3 - Added Local|LDAP|KRB5 support and LDAP base selection. * Thu Jun 11 2009 Lebedev Sergey <barabashka@altlinux.org> 0.10-alt2 - removed write_krb5 (unnecessary function) - merged with Anton V. Boyarshinov * Thu Jun 11 2009 Lebedev Sergey <barabashka@altlinux.org> 0.9-alt3.2 - added support /etc/openldap/ldap.conf * Wed Apr 29 2009 Anton V. Boyarshinov <boyarsh@altlinux.ru> 0.10-alt1 - removed /etc/krb5.conf filling (default is better) * Fri Apr 17 2009 Lebedev Sergey <barabashka@altlinux.org> 0.9-alt3.1 - fixed ui bug (installer) * Thu Apr 16 2009 Lebedev Sergey <barabashka@altlinux.org> 0.9-alt3 - rewrote qt interface - synced html interface with qt interface - fixed hook (now checking SERVER_ROLE) * Thu Apr 09 2009 Lebedev Sergey <barabashka@altlinux.org> 0.9-alt2.1 - added role checking (hook) * Wed Apr 08 2009 Lebedev Sergey <barabashka@altlinux.org> 0.9-alt2 - fixed nsswitch bug - fixed simple error (auth hook) - rewrote ui for domain auth * Fri Apr 03 2009 Lebedev Sergey <barabashka@altlinux.org> 0.9-alt1 - added system-auth tool - rewrote backend and ui (now using system-auth tool) - added /etc/hooks/hostname.d/90-auth (setting auth for servers) * Fri Mar 27 2009 Lebedev Sergey <barabashka@altlinux.org> 0.8-alt2.5 - removed alterator-kdc - wrote fill_krb_conf - fixed ui * Thu Mar 26 2009 Lebedev Sergey <barabashka@altlinux.org> 0.8-alt2 - added krb5 support (krb5.conf) - require alterator-kdc * Fri Feb 27 2009 Stanislav Ievlev <inger@altlinux.org> 0.8-alt1 - move html ui definitions from templates to ui directory - use help and translations directly from alterator-l10n * Tue Dec 09 2008 Vladislav Zavjalov <slazav@altlinux.org> 0.7-alt4 - use new help from l10n * Fri Dec 05 2008 Vladislav Zavjalov <slazav@altlinux.org> 0.7-alt3 - update help (by azol@), rebuild with new alterator-l10n (add pt_BR.po) * Fri Nov 07 2008 Vladislav Zavjalov <slazav@altlinux.org> 0.7-alt2 - remove title and h1 from html template * Mon Sep 22 2008 Stanislav Ievlev <inger@altlinux.org> 0.7-alt1 - replace constraints with types * Mon Jun 23 2008 Stanislav Ievlev <inger@altlinux.org> 0.6-alt4 - use enumref * Mon Jun 23 2008 Stanislav Ievlev <inger@altlinux.org> 0.6-alt3 - remove po-files - use module.mak * Mon Jun 23 2008 Stanislav Ievlev <inger@altlinux.org> 0.6-alt2 - rename: effect-update -> update-effect, effect-init -> init-effect * Fri Jun 20 2008 Stanislav Ievlev <inger@altlinux.org> 0.6-alt1 - use effectShow - update backend * Tue Apr 29 2008 Stanislav Ievlev <inger@altlinux.org> 0.5-alt4 - update for new case-form algo * Tue Apr 22 2008 Stanislav Ievlev <inger@altlinux.org> 0.5-alt3 - update help * Tue Apr 22 2008 Stanislav Ievlev <inger@altlinux.org> 0.5-alt2 - join to common translation database * Tue Apr 22 2008 Stanislav Ievlev <inger@altlinux.org> 0.5-alt1 - join alterator-auth and alterator-nsswitch - remove html-messages.po - improve UI according alterator HIG * Wed Apr 02 2008 Stanislav Ievlev <inger@altlinux.org> 0.4-alt2 - fix hostname restrictions * Wed Mar 19 2008 Stanislav Ievlev <inger@altlinux.org> 0.4-alt1 - remove template-* - use alterator-sh-functions - use libshell * Tue Jan 15 2008 Stanislav Ievlev <inger@altlinux.org> 0.3-alt1 - update to new help system * Thu Jun 14 2007 Stanislav Ievlev <inger@altlinux.org> 0.2-alt2 - fix backend * Wed Jun 13 2007 Stanislav Ievlev <inger@altlinux.org> 0.2-alt1 - add qt ui - html ui improvements * Fri Jun 08 2007 Stanislav Ievlev <inger@altlinux.org> 0.1-alt6 - help improvements from kirill@ * Tue Jun 05 2007 Stanislav Ievlev <inger@altlinux.org> 0.1-alt5 - comment out 'host' option to avoid conflict with uri * Mon Jun 04 2007 Stanislav Ievlev <inger@altlinux.org> 0.1-alt4 - add help * Thu May 31 2007 Stanislav Ievlev <inger@altlinux.org> 0.1-alt3 - improve constraints * Wed May 30 2007 Stanislav Ievlev <inger@altlinux.org> 0.1-alt2 - exclude ldap from list if appropriate nss module doesn't exists * Tue May 29 2007 Stanislav Ievlev <inger@altlinux.org> 0.1-alt1 - Initial release |