smeserver-coova-chilli/contribs7/smeserver-coova-chilli.spec

# $Id: smeserver-coova-chilli.spec,v 1.24 2009/03/11 08:58:33 vip-ire Exp $
# Authority: vip-ire
# Name: Daniel Berteaud

Summary: Coova-Chilli, a captive portal based on ChilliSpot configured for SME server
%define name smeserver-coova-chilli
Name: %{name}
%define version 0.2
%define release 10
Version: %{version}
Release: %{release}%{?dist}
License: GPL
Group: Networking/Remote access
Source: %{name}-%{version}.tar.gz
URL: http://sme.firewall-services.com
BuildRoot: /var/tmp/%{name}-%{version}-%{release}-buildroot
BuildArchitectures: noarch
BuildRequires: e-smith-devtools
Requires: e-smith-release >= 7.0 
Requires: openssl 
Requires: coova-chilli
Requires: e-smith-radiusd >= 1.0.0-18
Requires: perl(NetAddr::IP)

Patch1: smeserver-coova-chilli-0.2-guest_uplink_downlink.patch
Patch2: smeserver-coova-chilli-0.2-guest_access.patch
Patch3: smeserver-coova-chilli-0.2-chilli_ip.patch
Patch4: smeserver-coova-chilli-0.2-radius_timeout.patch
Patch5: smeserver-coova-chilli-0.2-guest_access2.patch
Patch6: smeserver-coova-chilli-0.2-template_syntax_error.patch
Patch7: smeserver-coova-chilli-0.2-httpd_warning.patch
Patch8: smeserver-coova-chilli-0.2-tundev.patch
Patch9: smeserver-coova-chilli-0.2-dhcp_range.patch
Patch10: smeserver-coova-chilli-0.2-localhost_nas.patch
Patch11: smeserver-coova-chilli-0.2-localhost_nas2.patch
Patch12: smeserver-coova-chilli-0.2-squid_template_typo.patch
Patch13: smeserver-coova-chilli-0.2-typo.patch

%description
This package allow you to configure a third interface
(eth2). Just plug a WiFi AP on it, and you'll have
a secured captive portal. Users will be redirected
on a logon page and they'll have to enter credentials
(sme accounts) before the server allows them. By default, 
they'll only have web access if they are members of the group "chilli"
This contrib will only work in server&gateway mode 

%changelog
* Thu Mar 12 2009 Daniel B. <daniel@firewall-services.com> 0.2-10
- Small typo correction

* Tue Mar 10 2009 Daniel B. <daniel@firewall-services.com> 0.2-9
- Use allready defined localhost NAS to fixe PPTP problem [SME: 4996]
  (thanks John K Pruder)
- fix a typo in squid template

* Sun Mar 07 2009 Daniel B. <daniel@firewall-services.com> 0.2-8
- Add dhcpstart and dhcpstop db parameters (thanks John K Pruder)

* Sun Mar 07 2009 Daniel B. <daniel@firewall-services.com> 0.2-7
- Fix tundev template [SME: 5054]

* Thu Sep 18 2008 Daniel B. <daniel@firewall-services.com> 0.2-6
- Remove warning in httpd.conf file (httpd -t)

* Mon Sep 15 2008 Daniel B. <daniel@firewall-services.com> 0.2-5
- Fix Syntax Error in /etc/chilli.conf template (25listen) [SME: 4559]

* Mon Sep 08 2008 Daniel B. <daniel@firewall-services.com> 0.2-4
- Requires perl(NetAddr::IP)

* Fri Sep 5 2008 Daniel B. <daniel@firewall-services.com> 0.2-3
- Chilli IP computed with NetAddr::IP
- Radius timeout set to 3 sec
- syntax error in radius users template fixed (for guest access)

* Thu Sep 3 2008 Daniel B. <daniel@firewall-services.com> 0.2-2
- Bug fix for guest access

* Tue Sep 2 2008 Daniel B. <daniel@firewall-services.com> 0.2-1
- uplink and downlink for guest account are configurable via db keys

* Tue Sep 2 2008 Daniel B. <daniel@firewall-services.com> 0.2-0
- Login page is a CGI, with a server-manager login page look
- Guest Access can be enabled with guestAccess key (enabled/disabled)
- merge patchs in main package

* Mon Sep 01 2008 Daniel B. <daniel@firewall-services.com> 0.1-8
- Fix uamallowed not working (since bypass_auth_with_squid_fix patch)
- Add WebRequests key (use of squid or direct connexions, default to direct)
- disable radconf in /etc/chilli/config
- possible to disable https (enabled by default in AllowedOutgoing)
- add tcp:static.sourceforge.net:80 in uamallowed so daloradius homepage is displayed correctly
- add radiustimeout directive so authentication errors display the standard message quickly

* Thu Aug 28 2008 Jonathan Martens <smeserver-contribs@snetram.nl> 0.1-7
- Reverted moving of default db entries to SPEC file since common practice is to store them in files

* Thu Aug 28 2008 Daniel B. <daniel@firewall-services.com> 0.1-6
- split uamallowed (one per line)
- Add dnsparanoia directive
- correct cmdsock directive
- initialise default configuration db in the spec file

* Thu Aug 28 2008 Jonathan Martens <smeserver-contribs@snetram.nl> 0.1-5
- Remove the reset of $OUT from the template

* Thu Aug 28 2008 Daniel B. <daniel@firewall-services.com> 0.1-4
- Add template to enable auth module unix (replace the template-custom)
- Copy images to /opt/chilli/template before removing .rpmnew directory
- Correct dependency (e-smith-radiusd not esmith-radiusd)

* Wed Aug 27 2008 Jonathan Martens <smeserver-contribs@snetram.nl> 0.1-3
- Split requirements to one per line
- Removed .rpmnew directory from package
- Removed the need for templates-custom as package now requires e-smith-radiusd >= 1.0.0-18

* Tue Aug 26 2008 Daniel B. <daniel@firewall-services.com>
- [0.1-2]
- Most firewall customizations (for incomming and forwarded traffic from
  chilli network only) can be set through db commands (Patch3)
- Outgoing DNS is allowed only for the two DNS servers configured
- Clean spec file, and put php files in /opt/chilli (Patch4)

* Tue Apr 15 2008 Daniel Berteaud <daniel@firewall-services.com>
- [0.1-1]
- security fixe: auth bypass with squid (patch1)
- masq template not expanded (patch2)

* Fri Apr 04 2008 Daniel Berteaud <daniel@firewall-services.com>
- [0.1]
- initiale release

%prep
%setup
%patch1 -p1
%patch2 -p1
%patch3 -p1
%patch4 -p1
%patch5 -p1
%patch6 -p1
%patch7 -p1
%patch8 -p1
%patch9 -p1
%patch10 -p1
%patch11 -p1
%patch12 -p1
%patch13 -p1

%build
/usr/bin/perl createlinks

%install
/bin/rm -rf $RPM_BUILD_ROOT
(cd root   ; /usr/bin/find . -depth -print | /bin/cpio -dump $RPM_BUILD_ROOT)
/bin/rm -f %{name}-%{version}-filelist
/sbin/e-smith/genfilelist $RPM_BUILD_ROOT \
        --file /etc/chilli/conup.sh 'attr(0750,root,root)' \
        --file /etc/chilli/condown.sh 'attr(0750,root,root)' \
        --file /opt/chilli/cgi-bin/hotspotlogin.cgi 'attr(0750,root,www) %config(noreplace)' \
        --file /opt/chilli/lang/hotspotlogin.fr.pl 'config(noreplace)' \
        --file /opt/chilli/lang/hotspotlogin.en.pl 'config(noreplace)' \
        --file /opt/chilli/css/sme.css 'config(noreplace)' \
        > %{name}-%{version}-filelist

%files -f %{name}-%{version}-filelist
%defattr(-,root,root)

%clean 
rm -rf $RPM_BUILD_ROOT

%preun

if [ $1 == 0 ]; then
        /sbin/e-smith/db configuration setprop chilli status disabled
        /etc/rc.d/init.d/chilli stop >& /dev/null || :
fi

1	# $Id: smeserver-coova-chilli.spec,v 1.24 2009/03/11 08:58:33 vip-ire Exp $
2	# Authority: vip-ire
3	# Name: Daniel Berteaud
4
5	Summary: Coova-Chilli, a captive portal based on ChilliSpot configured for SME server
6	%define name smeserver-coova-chilli
7	Name: %{name}
8	%define version 0.2
9	%define release 10
10	Version: %{version}
11	Release: %{release}%{?dist}
12	License: GPL
13	Group: Networking/Remote access
14	Source: %{name}-%{version}.tar.gz
15	URL: http://sme.firewall-services.com
16	BuildRoot: /var/tmp/%{name}-%{version}-%{release}-buildroot
17	BuildArchitectures: noarch
18	BuildRequires: e-smith-devtools
19	Requires: e-smith-release >= 7.0
20	Requires: openssl
21	Requires: coova-chilli
22	Requires: e-smith-radiusd >= 1.0.0-18
23	Requires: perl(NetAddr::IP)
24
25	Patch1: smeserver-coova-chilli-0.2-guest_uplink_downlink.patch
26	Patch2: smeserver-coova-chilli-0.2-guest_access.patch
27	Patch3: smeserver-coova-chilli-0.2-chilli_ip.patch
28	Patch4: smeserver-coova-chilli-0.2-radius_timeout.patch
29	Patch5: smeserver-coova-chilli-0.2-guest_access2.patch
30	Patch6: smeserver-coova-chilli-0.2-template_syntax_error.patch
31	Patch7: smeserver-coova-chilli-0.2-httpd_warning.patch
32	Patch8: smeserver-coova-chilli-0.2-tundev.patch
33	Patch9: smeserver-coova-chilli-0.2-dhcp_range.patch
34	Patch10: smeserver-coova-chilli-0.2-localhost_nas.patch
35	Patch11: smeserver-coova-chilli-0.2-localhost_nas2.patch
36	Patch12: smeserver-coova-chilli-0.2-squid_template_typo.patch
37	Patch13: smeserver-coova-chilli-0.2-typo.patch
38
39	%description
40	This package allow you to configure a third interface
41	(eth2). Just plug a WiFi AP on it, and you'll have
42	a secured captive portal. Users will be redirected
43	on a logon page and they'll have to enter credentials
44	(sme accounts) before the server allows them. By default,
45	they'll only have web access if they are members of the group "chilli"
46	This contrib will only work in server&gateway mode
47
48	%changelog
49	* Thu Mar 12 2009 Daniel B. <daniel@firewall-services.com> 0.2-10
50	- Small typo correction
51
52	* Tue Mar 10 2009 Daniel B. <daniel@firewall-services.com> 0.2-9
53	- Use allready defined localhost NAS to fixe PPTP problem [SME: 4996]
54	(thanks John K Pruder)
55	- fix a typo in squid template
56
57	* Sun Mar 07 2009 Daniel B. <daniel@firewall-services.com> 0.2-8
58	- Add dhcpstart and dhcpstop db parameters (thanks John K Pruder)
59
60	* Sun Mar 07 2009 Daniel B. <daniel@firewall-services.com> 0.2-7
61	- Fix tundev template [SME: 5054]
62
63	* Thu Sep 18 2008 Daniel B. <daniel@firewall-services.com> 0.2-6
64	- Remove warning in httpd.conf file (httpd -t)
65
66	* Mon Sep 15 2008 Daniel B. <daniel@firewall-services.com> 0.2-5
67	- Fix Syntax Error in /etc/chilli.conf template (25listen) [SME: 4559]
68
69	* Mon Sep 08 2008 Daniel B. <daniel@firewall-services.com> 0.2-4
70	- Requires perl(NetAddr::IP)
71
72	* Fri Sep 5 2008 Daniel B. <daniel@firewall-services.com> 0.2-3
73	- Chilli IP computed with NetAddr::IP
74	- Radius timeout set to 3 sec
75	- syntax error in radius users template fixed (for guest access)
76
77	* Thu Sep 3 2008 Daniel B. <daniel@firewall-services.com> 0.2-2
78	- Bug fix for guest access
79
80	* Tue Sep 2 2008 Daniel B. <daniel@firewall-services.com> 0.2-1
81	- uplink and downlink for guest account are configurable via db keys
82
83	* Tue Sep 2 2008 Daniel B. <daniel@firewall-services.com> 0.2-0
84	- Login page is a CGI, with a server-manager login page look
85	- Guest Access can be enabled with guestAccess key (enabled/disabled)
86	- merge patchs in main package
87
88	* Mon Sep 01 2008 Daniel B. <daniel@firewall-services.com> 0.1-8
89	- Fix uamallowed not working (since bypass_auth_with_squid_fix patch)
90	- Add WebRequests key (use of squid or direct connexions, default to direct)
91	- disable radconf in /etc/chilli/config
92	- possible to disable https (enabled by default in AllowedOutgoing)
93	- add tcp:static.sourceforge.net:80 in uamallowed so daloradius homepage is displayed correctly
94	- add radiustimeout directive so authentication errors display the standard message quickly
95
96	* Thu Aug 28 2008 Jonathan Martens <smeserver-contribs@snetram.nl> 0.1-7
97	- Reverted moving of default db entries to SPEC file since common practice is to store them in files
98
99	* Thu Aug 28 2008 Daniel B. <daniel@firewall-services.com> 0.1-6
100	- split uamallowed (one per line)
101	- Add dnsparanoia directive
102	- correct cmdsock directive
103	- initialise default configuration db in the spec file
104
105	* Thu Aug 28 2008 Jonathan Martens <smeserver-contribs@snetram.nl> 0.1-5
106	- Remove the reset of $OUT from the template
107
108	* Thu Aug 28 2008 Daniel B. <daniel@firewall-services.com> 0.1-4
109	- Add template to enable auth module unix (replace the template-custom)
110	- Copy images to /opt/chilli/template before removing .rpmnew directory
111	- Correct dependency (e-smith-radiusd not esmith-radiusd)
112
113	* Wed Aug 27 2008 Jonathan Martens <smeserver-contribs@snetram.nl> 0.1-3
114	- Split requirements to one per line
115	- Removed .rpmnew directory from package
116	- Removed the need for templates-custom as package now requires e-smith-radiusd >= 1.0.0-18
117
118	* Tue Aug 26 2008 Daniel B. <daniel@firewall-services.com>
119	- [0.1-2]
120	- Most firewall customizations (for incomming and forwarded traffic from
121	chilli network only) can be set through db commands (Patch3)
122	- Outgoing DNS is allowed only for the two DNS servers configured
123	- Clean spec file, and put php files in /opt/chilli (Patch4)
124
125	* Tue Apr 15 2008 Daniel Berteaud <daniel@firewall-services.com>
126	- [0.1-1]
127	- security fixe: auth bypass with squid (patch1)
128	- masq template not expanded (patch2)
129
130	* Fri Apr 04 2008 Daniel Berteaud <daniel@firewall-services.com>
131	- [0.1]
132	- initiale release
133
134	%prep
135	%setup
136	%patch1 -p1
137	%patch2 -p1
138	%patch3 -p1
139	%patch4 -p1
140	%patch5 -p1
141	%patch6 -p1
142	%patch7 -p1
143	%patch8 -p1
144	%patch9 -p1
145	%patch10 -p1
146	%patch11 -p1
147	%patch12 -p1
148	%patch13 -p1
149
150	%build
151	/usr/bin/perl createlinks
152
153	%install
154	/bin/rm -rf $RPM_BUILD_ROOT
155	(cd root ; /usr/bin/find . -depth -print \| /bin/cpio -dump $RPM_BUILD_ROOT)
156	/bin/rm -f %{name}-%{version}-filelist
157	/sbin/e-smith/genfilelist $RPM_BUILD_ROOT \
158	--file /etc/chilli/conup.sh 'attr(0750,root,root)' \
159	--file /etc/chilli/condown.sh 'attr(0750,root,root)' \
160	--file /opt/chilli/cgi-bin/hotspotlogin.cgi 'attr(0750,root,www) %config(noreplace)' \
161	--file /opt/chilli/lang/hotspotlogin.fr.pl 'config(noreplace)' \
162	--file /opt/chilli/lang/hotspotlogin.en.pl 'config(noreplace)' \
163	--file /opt/chilli/css/sme.css 'config(noreplace)' \
164	> %{name}-%{version}-filelist
165
166	%files -f %{name}-%{version}-filelist
167	%defattr(-,root,root)
168
169	%clean
170	rm -rf $RPM_BUILD_ROOT
171
172	%preun
173
174	if [ $1 == 0 ]; then
175	/sbin/e-smith/db configuration setprop chilli status disabled
176	/etc/rc.d/init.d/chilli stop >& /dev/null \|\| :
177	fi
178