smeserver-coova-chilli/contribs7/smeserver-coova-chilli.spec

# $Id: smeserver-coova-chilli.spec,v 1.13 2008/08/28 15:38:40 snetram Exp $
# Authority: vip-ire
# Name: Daniel Berteaud

Summary: Coova-Chilli, a captive portal based on ChilliSpot configured for SME server
%define name smeserver-coova-chilli
Name: %{name}
%define version 0.1
%define release 8
Version: %{version}
Release: %{release}%{?dist}
License: GPL
Group: Networking/Remote access
Source: %{name}-%{version}.tar.gz
URL: http://sme.firewall-services.com
BuildRoot: /var/tmp/%{name}-%{version}-%{release}-buildroot
BuildArchitectures: noarch
BuildRequires: e-smith-devtools
Requires: e-smith-release >= 7.0 
Requires: openssl 
Requires: coova-chilli
Requires: e-smith-radiusd >= 1.0.0-18

Patch1: smeserver-coova-chilli-0.1-bypass_auth_with_squid_fix.patch
Patch2: smeserver-coova-chilli-0.1-expand_masq_fix.patch
Patch3: smeserver-coova-chilli-0.1-firewall2db.patch
Patch4: smeserver-coova-chilli-0.1-loginPageDir.patch
Patch5: smeserver-coova-chilli-0.1-authTemplate.patch
Patch6: smeserver-coova-chilli-0.1-fixOUTreset.patch
Patch7: smeserver-coova-chilli-0.1-uamallowed.patch 
Patch8: smeserver-coova-chilli-0.1-dnsparano.patch
Patch9: smeserver-coova-chilli-0.1-cmdsock.patch
Patch10: smeserver-coova-chilli-0.1-directOrSquid.patch

%description
This package allow you to configure a third interface
(eth2). Just plug a WiFi AP on it, and you'll have
a secured captive portal. Users will be redirected
on a logon page and they'll have to enter credentials
(sme accounts) before the server allows them. By default, 
they'll only have web access if they are members of the group "chilli"
This contrib will only work in server&gateway mode 

%changelog
* Mon Sep 01 2008 Daniel B. <daniel@firewall-services.com> 0.1-8
- Fix uamallowed not working (since bypass_auth_with_squid_fix patch)
- Add WebRequests key (use of squid or direct connexions, default to direct)
- disable radconf in /etc/chilli/config
- possible to disable https (enabled by default in AllowedOutgoing)
- add tcp:static.sourceforge.net:80 in uamallowed so daloradius homepage is displayed correctly
- add radiustimeout directive so authentication errors display the standard message quickly

* Thu Aug 28 2008 Jonathan Martens <smeserver-contribs@snetram.nl> 0.1-7
- Reverted moving of default db entries to SPEC file since common practice is to store them in files

* Thu Aug 28 2008 Daniel B. <daniel@firewall-services.com> 0.1-6
- split uamallowed (one per line)
- Add dnsparanoia directive
- correct cmdsock directive
- initialise default configuration db in the spec file

* Thu Aug 28 2008 Jonathan Martens <smeserver-contribs@snetram.nl> 0.1-5
- Remove the reset of $OUT from the template

* Thu Aug 28 2008 Daniel B. <daniel@firewall-services.com> 0.1-4
- Add template to enable auth module unix (replace the template-custom)
- Copy images to /opt/chilli/template before removing .rpmnew directory
- Correct dependency (e-smith-radiusd not esmith-radiusd)

* Wed Aug 27 2008 Jonathan Martens <smeserver-contribs@snetram.nl> 0.1-3
- Split requirements to one per line
- Removed .rpmnew directory from package
- Removed the need for templates-custom as package now requires e-smith-radiusd >= 1.0.0-18

* Tue Aug 26 2008 Daniel B. <daniel@firewall-services.com>
- [0.1-2]
- Most firewall customizations (for incomming and forwarded traffic from
  chilli network only) can be set through db commands (Patch3)
- Outgoing DNS is allowed only for the two DNS servers configured
- Clean spec file, and put php files in /opt/chilli (Patch4)

* Tue Apr 15 2008 Daniel Berteaud <daniel@firewall-services.com>
- [0.1-1]
- security fixe: auth bypass with squid (patch1)
- masq template not expanded (patch2)

* Fri Apr 04 2008 Daniel Berteaud <daniel@firewall-services.com>
- [0.1]
- initiale release

%prep
%setup
%patch1 -p1
%patch2 -p1
%patch3 -p1
%patch4 -p1
%patch5 -p1
%patch6 -p1
%patch7 -p1
%patch8 -p1
%patch9 -p1
%patch10 -p1

mv root/opt/chilli.rpmnew/template/images root/opt/chilli/template
rm -rf root/opt/chilli.rpmnew/
rm -rf root/etc/e-smith/templates-custom/

%build
/usr/bin/perl createlinks

%install
/bin/rm -rf $RPM_BUILD_ROOT
(cd root   ; /usr/bin/find . -depth -print | /bin/cpio -dump $RPM_BUILD_ROOT)
/bin/rm -f %{name}-%{version}-filelist
/sbin/e-smith/genfilelist $RPM_BUILD_ROOT \
        --file /etc/chilli/conup.sh 'attr(0750,root,root)' \
        --file /etc/chilli/condown.sh 'attr(0750,root,root)' \
        --file /opt/chilli/hotspotlogin-loginform.php 'config(noreplace)' \
        --file /opt/chilli/hotspotlogin-nonchilli.php 'config(noreplace)' \
        --file /opt/chilli/hotspotlogin-nonssl.php 'config(noreplace)' \
        --file /opt/chilli/hotspotlogin.php 'config(noreplace)' \
        --file /opt/chilli/lang/en.php 'config(noreplace)' \
        --file /opt/chilli/lang/fr.php 'config(noreplace)' \
        --file /opt/chilli/lang/main.php 'config(noreplace)' \
        --file /opt/chilli/template/loggingin.php 'config(noreplace)' \
        --file /opt/chilli/template/loginform-footer.php 'config(noreplace)' \
        --file /opt/chilli/template/loginform-header.php 'config(noreplace)' \
        > %{name}-%{version}-filelist

%files -f %{name}-%{version}-filelist
%defattr(-,root,root)

%clean 
rm -rf $RPM_BUILD_ROOT

%preun

if [ $1 == 0 ]; then
        /sbin/e-smith/db configuration setprop chilli status disabled
        /etc/rc.d/init.d/chilli stop >& /dev/null || :
fi

1	# $Id: smeserver-coova-chilli.spec,v 1.13 2008/08/28 15:38:40 snetram Exp $
2	# Authority: vip-ire
3	# Name: Daniel Berteaud
4
5	Summary: Coova-Chilli, a captive portal based on ChilliSpot configured for SME server
6	%define name smeserver-coova-chilli
7	Name: %{name}
8	%define version 0.1
9	%define release 8
10	Version: %{version}
11	Release: %{release}%{?dist}
12	License: GPL
13	Group: Networking/Remote access
14	Source: %{name}-%{version}.tar.gz
15	URL: http://sme.firewall-services.com
16	BuildRoot: /var/tmp/%{name}-%{version}-%{release}-buildroot
17	BuildArchitectures: noarch
18	BuildRequires: e-smith-devtools
19	Requires: e-smith-release >= 7.0
20	Requires: openssl
21	Requires: coova-chilli
22	Requires: e-smith-radiusd >= 1.0.0-18
23
24	Patch1: smeserver-coova-chilli-0.1-bypass_auth_with_squid_fix.patch
25	Patch2: smeserver-coova-chilli-0.1-expand_masq_fix.patch
26	Patch3: smeserver-coova-chilli-0.1-firewall2db.patch
27	Patch4: smeserver-coova-chilli-0.1-loginPageDir.patch
28	Patch5: smeserver-coova-chilli-0.1-authTemplate.patch
29	Patch6: smeserver-coova-chilli-0.1-fixOUTreset.patch
30	Patch7: smeserver-coova-chilli-0.1-uamallowed.patch
31	Patch8: smeserver-coova-chilli-0.1-dnsparano.patch
32	Patch9: smeserver-coova-chilli-0.1-cmdsock.patch
33	Patch10: smeserver-coova-chilli-0.1-directOrSquid.patch
34
35	%description
36	This package allow you to configure a third interface
37	(eth2). Just plug a WiFi AP on it, and you'll have
38	a secured captive portal. Users will be redirected
39	on a logon page and they'll have to enter credentials
40	(sme accounts) before the server allows them. By default,
41	they'll only have web access if they are members of the group "chilli"
42	This contrib will only work in server&gateway mode
43
44	%changelog
45	* Mon Sep 01 2008 Daniel B. <daniel@firewall-services.com> 0.1-8
46	- Fix uamallowed not working (since bypass_auth_with_squid_fix patch)
47	- Add WebRequests key (use of squid or direct connexions, default to direct)
48	- disable radconf in /etc/chilli/config
49	- possible to disable https (enabled by default in AllowedOutgoing)
50	- add tcp:static.sourceforge.net:80 in uamallowed so daloradius homepage is displayed correctly
51	- add radiustimeout directive so authentication errors display the standard message quickly
52
53	* Thu Aug 28 2008 Jonathan Martens <smeserver-contribs@snetram.nl> 0.1-7
54	- Reverted moving of default db entries to SPEC file since common practice is to store them in files
55
56	* Thu Aug 28 2008 Daniel B. <daniel@firewall-services.com> 0.1-6
57	- split uamallowed (one per line)
58	- Add dnsparanoia directive
59	- correct cmdsock directive
60	- initialise default configuration db in the spec file
61
62	* Thu Aug 28 2008 Jonathan Martens <smeserver-contribs@snetram.nl> 0.1-5
63	- Remove the reset of $OUT from the template
64
65	* Thu Aug 28 2008 Daniel B. <daniel@firewall-services.com> 0.1-4
66	- Add template to enable auth module unix (replace the template-custom)
67	- Copy images to /opt/chilli/template before removing .rpmnew directory
68	- Correct dependency (e-smith-radiusd not esmith-radiusd)
69
70	* Wed Aug 27 2008 Jonathan Martens <smeserver-contribs@snetram.nl> 0.1-3
71	- Split requirements to one per line
72	- Removed .rpmnew directory from package
73	- Removed the need for templates-custom as package now requires e-smith-radiusd >= 1.0.0-18
74
75	* Tue Aug 26 2008 Daniel B. <daniel@firewall-services.com>
76	- [0.1-2]
77	- Most firewall customizations (for incomming and forwarded traffic from
78	chilli network only) can be set through db commands (Patch3)
79	- Outgoing DNS is allowed only for the two DNS servers configured
80	- Clean spec file, and put php files in /opt/chilli (Patch4)
81
82	* Tue Apr 15 2008 Daniel Berteaud <daniel@firewall-services.com>
83	- [0.1-1]
84	- security fixe: auth bypass with squid (patch1)
85	- masq template not expanded (patch2)
86
87	* Fri Apr 04 2008 Daniel Berteaud <daniel@firewall-services.com>
88	- [0.1]
89	- initiale release
90
91	%prep
92	%setup
93	%patch1 -p1
94	%patch2 -p1
95	%patch3 -p1
96	%patch4 -p1
97	%patch5 -p1
98	%patch6 -p1
99	%patch7 -p1
100	%patch8 -p1
101	%patch9 -p1
102	%patch10 -p1
103
104	mv root/opt/chilli.rpmnew/template/images root/opt/chilli/template
105	rm -rf root/opt/chilli.rpmnew/
106	rm -rf root/etc/e-smith/templates-custom/
107
108	%build
109	/usr/bin/perl createlinks
110
111	%install
112	/bin/rm -rf $RPM_BUILD_ROOT
113	(cd root ; /usr/bin/find . -depth -print \| /bin/cpio -dump $RPM_BUILD_ROOT)
114	/bin/rm -f %{name}-%{version}-filelist
115	/sbin/e-smith/genfilelist $RPM_BUILD_ROOT \
116	--file /etc/chilli/conup.sh 'attr(0750,root,root)' \
117	--file /etc/chilli/condown.sh 'attr(0750,root,root)' \
118	--file /opt/chilli/hotspotlogin-loginform.php 'config(noreplace)' \
119	--file /opt/chilli/hotspotlogin-nonchilli.php 'config(noreplace)' \
120	--file /opt/chilli/hotspotlogin-nonssl.php 'config(noreplace)' \
121	--file /opt/chilli/hotspotlogin.php 'config(noreplace)' \
122	--file /opt/chilli/lang/en.php 'config(noreplace)' \
123	--file /opt/chilli/lang/fr.php 'config(noreplace)' \
124	--file /opt/chilli/lang/main.php 'config(noreplace)' \
125	--file /opt/chilli/template/loggingin.php 'config(noreplace)' \
126	--file /opt/chilli/template/loginform-footer.php 'config(noreplace)' \
127	--file /opt/chilli/template/loginform-header.php 'config(noreplace)' \
128	> %{name}-%{version}-filelist
129
130	%files -f %{name}-%{version}-filelist
131	%defattr(-,root,root)
132
133	%clean
134	rm -rf $RPM_BUILD_ROOT
135
136	%preun
137
138	if [ $1 == 0 ]; then
139	/sbin/e-smith/db configuration setprop chilli status disabled
140	/etc/rc.d/init.d/chilli stop >& /dev/null \|\| :
141	fi
142