/[smecontribs]/rpms/smeserver-coova-chilli/contribs7/smeserver-coova-chilli.spec

Diff of /rpms/smeserver-coova-chilli/contribs7/smeserver-coova-chilli.spec

Parent Directory | Revision Log | View Revision Graph Revision Graph | View Patch Patch

-Revision 1.1 by slords,
Tue Apr 15 15:04:56 2008 UTC
+Revision 1.27 by vip-ire,
Tue May 26 13:46:19 2009 UTC
 Line 1
- # $Id$
+ # $Id: smeserver-coova-chilli.spec,v 1.26 2009/05/04 14:31:30 vip-ire Exp $
  # Authority: vip-ire
  # Name: Daniel Berteaud
  Summary: Coova-Chilli, a captive portal based on ChilliSpot configured for SME server
  %define name smeserver-coova-chilli
  Name: %{name}
- %define version 0.1
+ %define version 0.2
- %define release 1
+ %define release 13
  Version: %{version}
  Release: %{release}%{?dist}
  License: GPL
  Group: Networking/Remote access
  Source: %{name}-%{version}.tar.gz
- Patch1: smeserver-coova-chilli-0.1-bypass_auth_with_squid_fix.patch
- Patch2: smeserver-coova-chilli-0.1-expand_masq_fix.patch
  URL: http://sme.firewall-services.com
- Packager: Daniel Berteaud <daniel@firewall-services.com>
  BuildRoot: /var/tmp/%{name}-%{version}-%{release}-buildroot
  BuildArchitectures: noarch
- Requires: e-smith-release >= 7.0 openssl coova-chilli
+ BuildRequires: e-smith-devtools
- BuildRequires: e-smith-devtools >= 1.13.1-03
+ Requires: e-smith-release >= 7.0
+ Requires: openssl
+ Requires: coova-chilli >= 1.0.13
+ Requires: e-smith-radiusd >= 1.0.0-18
+ Requires: perl(NetAddr::IP)
+ Requires: smeserver-remoteuseraccess
+ Patch1: smeserver-coova-chilli-0.2-guest_uplink_downlink.patch
+ Patch2: smeserver-coova-chilli-0.2-guest_access.patch
+ Patch3: smeserver-coova-chilli-0.2-chilli_ip.patch
+ Patch4: smeserver-coova-chilli-0.2-radius_timeout.patch
+ Patch5: smeserver-coova-chilli-0.2-guest_access2.patch
+ Patch6: smeserver-coova-chilli-0.2-template_syntax_error.patch
+ Patch7: smeserver-coova-chilli-0.2-httpd_warning.patch
+ Patch8: smeserver-coova-chilli-0.2-tundev.patch
+ Patch9: smeserver-coova-chilli-0.2-dhcp_range.patch
+ Patch10: smeserver-coova-chilli-0.2-localhost_nas.patch
+ Patch11: smeserver-coova-chilli-0.2-localhost_nas2.patch
+ Patch12: smeserver-coova-chilli-0.2-squid_template_typo.patch
+ Patch13: smeserver-coova-chilli-0.2-typo.patch
+ Patch14: smeserver-coova-chilli-0.2-allow_uamallowed.patch
+ Patch15: smeserver-coova-chilli-0.2-drop_privileges.patch
+ Patch16: smeserver-coova-chilli-0.2-use_sudo.patch
+ Patch17: smeserver-coova-chilli-0.2-templates2expand_in_createlinks.patch
+ Patch18: smeserver-coova-chilli-0.2-db_noc2c.patch
  %description
  This package allow you to configure a third interface
-Line 27 
 This package allow you to configure a th
+Line 48 
 This package allow you to configure a th
  a secured captive portal. Users will be redirected
  on a logon page and they'll have to enter credentials
  (sme accounts) before the server allows them. By default,
  they'll only have web access if they are members of the group "chilli"
+ This contrib will only work in server&gateway mode
  %changelog
+ * Tue May 26 2009 Daniel B. <daniel@firewall-services.com> 0.2-13
+ - Add noc2c key (allow to disable the option, but default to enabled)
+ * Thu Apr 30 2009 Daniel B. <daniel@firewall-services.com> 0.2-12
+ - Create a new user coovachilli
+ - Add support of new options uid and gid to drop privileges
+ - Enabled noc2c (prevent client to client communication)
+ - Use sudo to call conup/condown script (as chilli runs under un
+   unprivileged account now)
+ - Add smeserver-remoteuseraccess as a dependency (for sudoers metadata templates)
+ - move templates2expand in creatlinks script
+ * Wed Mar 13 2009 Daniel B. <daniel@firewall-services.com> 0.2-11
+ - Automatically allow uamallowed entries in the firewall (no need to
+   explicitly allow it agin in AllowOutgoing)
+ * Thu Mar 12 2009 Daniel B. <daniel@firewall-services.com> 0.2-10
+ - Small typo correction
+ * Tue Mar 10 2009 Daniel B. <daniel@firewall-services.com> 0.2-9
+ - Use allready defined localhost NAS to fixe PPTP problem [SME: 4996]
+   (thanks John K Pruder)
+ - fix a typo in squid template
+ * Sun Mar 07 2009 Daniel B. <daniel@firewall-services.com> 0.2-8
+ - Add dhcpstart and dhcpstop db parameters (thanks John K Pruder)
+ * Sun Mar 07 2009 Daniel B. <daniel@firewall-services.com> 0.2-7
+ - Fix tundev template [SME: 5054]
+ * Thu Sep 18 2008 Daniel B. <daniel@firewall-services.com> 0.2-6
+ - Remove warning in httpd.conf file (httpd -t)
+ * Mon Sep 15 2008 Daniel B. <daniel@firewall-services.com> 0.2-5
+ - Fix Syntax Error in /etc/chilli.conf template (25listen) [SME: 4559]
+ * Mon Sep 08 2008 Daniel B. <daniel@firewall-services.com> 0.2-4
+ - Requires perl(NetAddr::IP)
+ * Fri Sep 5 2008 Daniel B. <daniel@firewall-services.com> 0.2-3
+ - Chilli IP computed with NetAddr::IP
+ - Radius timeout set to 3 sec
+ - syntax error in radius users template fixed (for guest access)
+ * Thu Sep 3 2008 Daniel B. <daniel@firewall-services.com> 0.2-2
+ - Bug fix for guest access
+ * Tue Sep 2 2008 Daniel B. <daniel@firewall-services.com> 0.2-1
+ - uplink and downlink for guest account are configurable via db keys
+ * Tue Sep 2 2008 Daniel B. <daniel@firewall-services.com> 0.2-0
+ - Login page is a CGI, with a server-manager login page look
+ - Guest Access can be enabled with guestAccess key (enabled/disabled)
+ - merge patchs in main package
+ * Mon Sep 01 2008 Daniel B. <daniel@firewall-services.com> 0.1-8
+ - Fix uamallowed not working (since bypass_auth_with_squid_fix patch)
+ - Add WebRequests key (use of squid or direct connexions, default to direct)
+ - disable radconf in /etc/chilli/config
+ - possible to disable https (enabled by default in AllowedOutgoing)
+ - add tcp:static.sourceforge.net:80 in uamallowed so daloradius homepage is displayed correctly
+ - add radiustimeout directive so authentication errors display the standard message quickly
+ * Thu Aug 28 2008 Jonathan Martens <smeserver-contribs@snetram.nl> 0.1-7
+ - Reverted moving of default db entries to SPEC file since common practice is to store them in files
+ * Thu Aug 28 2008 Daniel B. <daniel@firewall-services.com> 0.1-6
+ - split uamallowed (one per line)
+ - Add dnsparanoia directive
+ - correct cmdsock directive
+ - initialise default configuration db in the spec file
+ * Thu Aug 28 2008 Jonathan Martens <smeserver-contribs@snetram.nl> 0.1-5
+ - Remove the reset of $OUT from the template
+ * Thu Aug 28 2008 Daniel B. <daniel@firewall-services.com> 0.1-4
+ - Add template to enable auth module unix (replace the template-custom)
+ - Copy images to /opt/chilli/template before removing .rpmnew directory
+ - Correct dependency (e-smith-radiusd not esmith-radiusd)
+ * Wed Aug 27 2008 Jonathan Martens <smeserver-contribs@snetram.nl> 0.1-3
+ - Split requirements to one per line
+ - Removed .rpmnew directory from package
+ - Removed the need for templates-custom as package now requires e-smith-radiusd >= 1.0.0-18
+ * Tue Aug 26 2008 Daniel B. <daniel@firewall-services.com>
+ - [0.1-2]
+ - Most firewall customizations (for incomming and forwarded traffic from
+   chilli network only) can be set through db commands (Patch3)
+ - Outgoing DNS is allowed only for the two DNS servers configured
+ - Clean spec file, and put php files in /opt/chilli (Patch4)
  * Tue Apr 15 2008 Daniel Berteaud <daniel@firewall-services.com>
  - [0.1-1]
  - security fixe: auth bypass with squid (patch1)
-Line 43 
 they'll only have web access if they are
+Line 157 
 they'll only have web access if they are
  %setup
  %patch1 -p1
  %patch2 -p1
+ %patch3 -p1
+ %patch4 -p1
+ %patch5 -p1
+ %patch6 -p1
+ %patch7 -p1
+ %patch8 -p1
+ %patch9 -p1
+ %patch10 -p1
+ %patch11 -p1
+ %patch12 -p1
+ %patch13 -p1
+ %patch14 -p1
+ %patch15 -p1
+ %patch16 -p1
+ %patch17 -p1
+ %patch18 -p1
  %build
  /usr/bin/perl createlinks
-Line 52 
 they'll only have web access if they are
+Line 182 
 they'll only have web access if they are
  (cd root   ; /usr/bin/find . -depth -print | /bin/cpio -dump $RPM_BUILD_ROOT)
  /bin/rm -f %{name}-%{version}-filelist
  /sbin/e-smith/genfilelist $RPM_BUILD_ROOT \
-         --file /etc/chilli/conup.sh 'attr(0750,root,root)' \
+         --file /etc/chilli/conup.sh 'attr(755,root,root)' \
-         --file /etc/chilli/condown.sh 'attr(0750,root,root)' \
+         --file /etc/chilli/condown.sh 'attr(750,root,root)' \
+         --file /etc/chilli/call_conup.sh 'attr(755,root,root)' \
+         --file /etc/chilli/call_condown.sh 'attr(755,root,root)' \
+         --file /opt/chilli/cgi-bin/hotspotlogin.cgi 'attr(0750,root,www) %config(noreplace)' \
+         --file /opt/chilli/lang/hotspotlogin.fr.pl 'config(noreplace)' \
+         --file /opt/chilli/lang/hotspotlogin.en.pl 'config(noreplace)' \
+         --file /opt/chilli/css/sme.css 'config(noreplace)' \
          > %{name}-%{version}-filelist
  %files -f %{name}-%{version}-filelist
-Line 62 
 they'll only have web access if they are
+Line 198 
 they'll only have web access if they are
  %clean
  rm -rf $RPM_BUILD_ROOT
- %post
+ %pre
- if [ ! -e /opt/chilli ]; then
+ if ! /usr/bin/id coovachilli &>/dev/null; then
-         /bin/cp -a /opt/chilli.rpmnew /opt/chilli
+         /usr/sbin/useradd -c 'Coova Chilli User' -s /sbin/nologin -r -d /etc/chilli coovachilli &>/dev/null || \
+                 %logmsg "Unexpected error adding user \"coovachilli\". Abort installation."
  fi
  %preun
  if [ $1 == 0 ]; then
          /sbin/e-smith/db configuration setprop chilli status disabled
-         /sbin/e-smith/signal-event chilli-update
+         /etc/rc.d/init.d/chilli stop >& /dev/null || :
  fi

 Legend:



Removed lines/characters
 


Changed lines/characters


 
Added lines/characters
 Legend:



Removed lines/characters
 


Changed lines/characters


 
Added lines/characters
-Removed lines/characters
+Added lines/characters

admin@koozali.org	ViewVC Help
Powered by ViewVC 1.2.1