/[smecontribs]/rpms/smeserver-coova-chilli/contribs9/smeserver-coova-chilli.spec
ViewVC logotype

Contents of /rpms/smeserver-coova-chilli/contribs9/smeserver-coova-chilli.spec

Parent Directory Parent Directory | Revision Log Revision Log | View Revision Graph Revision Graph


Revision 1.2 - (show annotations) (download)
Thu May 26 08:53:11 2016 UTC (8 years, 6 months ago) by unnilennium
Branch: MAIN
CVS Tags: smeserver-coova-chilli-0_3-2_el6_sme
Changes since 1.1: +9 -2 lines
* Thu May 26 2016 Jean-Philipe Pialasse <tests@pialasse.com> 0.3-2.sme
- fix iptables syntax exclamation mark misplaced [SME: 9514]
- smeserver-coova-chilli-0.3-MasqUpdate.patch

1 # $Id: smeserver-coova-chilli.spec,v 1.1 2016/05/13 10:41:31 vip-ire Exp $
2 # Authority: vip-ire
3 # Name: Daniel Berteaud
4
5 Summary: Coova-Chilli, a captive portal based on ChilliSpot configured for SME server
6 %define name smeserver-coova-chilli
7 Name: %{name}
8 %define version 0.3
9 %define release 2
10 Version: %{version}
11 Release: %{release}%{?dist}
12 License: GPL
13 Group: Networking/Remote access
14 Source: %{name}-%{version}.tar.xz
15 Patch0: smeserver-coova-chilli-0.3-MasqUpdate.patch
16 URL: https://contribs.org
17 BuildRoot: /var/tmp/%{name}-%{version}-%{release}-buildroot
18 BuildArchitectures: noarch
19 BuildRequires: e-smith-devtools
20 Requires: e-smith-release >= 7.0
21 Requires: openssl
22 Requires: coova-chilli >= 1.0.13
23 Requires: e-smith-radiusd >= 1.0.0-18
24 Requires: perl(NetAddr::IP)
25 Requires: smeserver-remoteuseraccess
26
27 %description
28 This package allow you to configure a third interface
29 (eth2). Just plug a WiFi AP on it, and you'll have
30 a secured captive portal. Users will be redirected
31 on a logon page and they'll have to enter credentials
32 (sme accounts) before the server allows them. By default,
33 they'll only have web access if they are members of the group "chilli"
34 This contrib will only work in server&gateway mode
35
36 %changelog
37 * Thu May 26 2016 Jean-Philipe Pialasse <tests@pialasse.com> 0.3-2.sme
38 - fix iptables syntax exclamation mark misplaced [SME: 9514]
39 - smeserver-coova-chilli-0.3-MasqUpdate.patch
40
41 * Fri May 13 2016 Daniel Berteaud <daniel@firewall-services.com> 0.3-1
42 - Roll new stream for sme9
43
44 * Mon Mar 28 2011 Daniel B. <daniel@firewall-services.com> 0.2-20
45 - Fix uamhomepage setting
46
47 * Wed Oct 20 2010 Daniel B. <daniel@firewall-services.com> 0.2-19
48 - Drop all the trafic not going through the external interface
49
50 * Thu Jul 29 2010 Daniel B. <daniel@firewall-services.com> 0.2-18
51 - cleanup CGI login script
52 - remove obsolete php templates
53 - add macallowed DB key to bypass auth for some mac addresses
54 - add uamhomepage DB key
55
56 * Mon Jul 19 2010 Daniel B. <daniel@firewall-services.com> 0.2-17
57 - Fixes sudo env (bug only in SME8)
58 - Uses TCPPort squid key instead of TransparentPort so coova can
59 work with dansguardian
60 - insert NAT rule just before the ACCEPT (PREROUTING_FROM_CHILLI)
61 - add transparent directive to squid (required for squid => 2.6)
62
63 * Wed Apr 14 2010 Daniel B. <daniel@firewall-services.com> 0.2-16
64 - Fixe a bug in conup.sh and condown.sh
65
66 * Thu Jun 11 2009 Daniel B. <daniel@firewall-services.com> 0.2-15
67 - Fixe a bug in masq template for uamallowed entries
68
69 * Thu May 28 2009 Daniel B. <daniel@firewall-services.com> 0.2-14
70 - Remove space in hotspot-config.pl template
71
72 * Tue May 26 2009 Daniel B. <daniel@firewall-services.com> 0.2-13
73 - Add noc2c key (allow to disable the option, but default to enabled)
74
75 * Thu Apr 30 2009 Daniel B. <daniel@firewall-services.com> 0.2-12
76 - Create a new user coovachilli
77 - Add support of new options uid and gid to drop privileges
78 - Enabled noc2c (prevent client to client communication)
79 - Use sudo to call conup/condown script (as chilli runs under un
80 unprivileged account now)
81 - Add smeserver-remoteuseraccess as a dependency (for sudoers metadata templates)
82 - move templates2expand in creatlinks script
83
84 * Wed Mar 13 2009 Daniel B. <daniel@firewall-services.com> 0.2-11
85 - Automatically allow uamallowed entries in the firewall (no need to
86 explicitly allow it agin in AllowOutgoing)
87
88 * Thu Mar 12 2009 Daniel B. <daniel@firewall-services.com> 0.2-10
89 - Small typo correction
90
91 * Tue Mar 10 2009 Daniel B. <daniel@firewall-services.com> 0.2-9
92 - Use allready defined localhost NAS to fixe PPTP problem [SME: 4996]
93 (thanks John K Pruder)
94 - fix a typo in squid template
95
96 * Sun Mar 07 2009 Daniel B. <daniel@firewall-services.com> 0.2-8
97 - Add dhcpstart and dhcpstop db parameters (thanks John K Pruder)
98
99 * Sun Mar 07 2009 Daniel B. <daniel@firewall-services.com> 0.2-7
100 - Fix tundev template [SME: 5054]
101
102 * Thu Sep 18 2008 Daniel B. <daniel@firewall-services.com> 0.2-6
103 - Remove warning in httpd.conf file (httpd -t)
104
105 * Mon Sep 15 2008 Daniel B. <daniel@firewall-services.com> 0.2-5
106 - Fix Syntax Error in /etc/chilli.conf template (25listen) [SME: 4559]
107
108 * Mon Sep 08 2008 Daniel B. <daniel@firewall-services.com> 0.2-4
109 - Requires perl(NetAddr::IP)
110
111 * Fri Sep 5 2008 Daniel B. <daniel@firewall-services.com> 0.2-3
112 - Chilli IP computed with NetAddr::IP
113 - Radius timeout set to 3 sec
114 - syntax error in radius users template fixed (for guest access)
115
116 * Thu Sep 3 2008 Daniel B. <daniel@firewall-services.com> 0.2-2
117 - Bug fix for guest access
118
119 * Tue Sep 2 2008 Daniel B. <daniel@firewall-services.com> 0.2-1
120 - uplink and downlink for guest account are configurable via db keys
121
122 * Tue Sep 2 2008 Daniel B. <daniel@firewall-services.com> 0.2-0
123 - Login page is a CGI, with a server-manager login page look
124 - Guest Access can be enabled with guestAccess key (enabled/disabled)
125 - merge patchs in main package
126
127 * Mon Sep 01 2008 Daniel B. <daniel@firewall-services.com> 0.1-8
128 - Fix uamallowed not working (since bypass_auth_with_squid_fix patch)
129 - Add WebRequests key (use of squid or direct connexions, default to direct)
130 - disable radconf in /etc/chilli/config
131 - possible to disable https (enabled by default in AllowedOutgoing)
132 - add tcp:static.sourceforge.net:80 in uamallowed so daloradius homepage is displayed correctly
133 - add radiustimeout directive so authentication errors display the standard message quickly
134
135 * Thu Aug 28 2008 Jonathan Martens <smeserver-contribs@snetram.nl> 0.1-7
136 - Reverted moving of default db entries to SPEC file since common practice is to store them in files
137
138 * Thu Aug 28 2008 Daniel B. <daniel@firewall-services.com> 0.1-6
139 - split uamallowed (one per line)
140 - Add dnsparanoia directive
141 - correct cmdsock directive
142 - initialise default configuration db in the spec file
143
144 * Thu Aug 28 2008 Jonathan Martens <smeserver-contribs@snetram.nl> 0.1-5
145 - Remove the reset of $OUT from the template
146
147 * Thu Aug 28 2008 Daniel B. <daniel@firewall-services.com> 0.1-4
148 - Add template to enable auth module unix (replace the template-custom)
149 - Copy images to /opt/chilli/template before removing .rpmnew directory
150 - Correct dependency (e-smith-radiusd not esmith-radiusd)
151
152 * Wed Aug 27 2008 Jonathan Martens <smeserver-contribs@snetram.nl> 0.1-3
153 - Split requirements to one per line
154 - Removed .rpmnew directory from package
155 - Removed the need for templates-custom as package now requires e-smith-radiusd >= 1.0.0-18
156
157 * Tue Aug 26 2008 Daniel B. <daniel@firewall-services.com>
158 - [0.1-2]
159 - Most firewall customizations (for incomming and forwarded traffic from
160 chilli network only) can be set through db commands (Patch3)
161 - Outgoing DNS is allowed only for the two DNS servers configured
162 - Clean spec file, and put php files in /opt/chilli (Patch4)
163
164 * Tue Apr 15 2008 Daniel Berteaud <daniel@firewall-services.com>
165 - [0.1-1]
166 - security fixe: auth bypass with squid (patch1)
167 - masq template not expanded (patch2)
168
169 * Fri Apr 04 2008 Daniel Berteaud <daniel@firewall-services.com>
170 - [0.1]
171 - initiale release
172
173 %prep
174 %setup
175 %patch0 -p1
176
177
178 %build
179 /usr/bin/perl createlinks
180
181 %install
182 /bin/rm -rf $RPM_BUILD_ROOT
183 (cd root ; /usr/bin/find . -depth -print | /bin/cpio -dump $RPM_BUILD_ROOT)
184 /bin/rm -f %{name}-%{version}-filelist
185 /sbin/e-smith/genfilelist $RPM_BUILD_ROOT \
186 --file /etc/chilli/conup.sh 'attr(755,root,root)' \
187 --file /etc/chilli/condown.sh 'attr(750,root,root)' \
188 --file /etc/chilli/call_conup.sh 'attr(755,root,root)' \
189 --file /etc/chilli/call_condown.sh 'attr(755,root,root)' \
190 --file /opt/chilli/cgi-bin/hotspotlogin.cgi 'attr(0750,root,www) %config(noreplace)' \
191 --file /opt/chilli/lang/hotspotlogin.fr.pl 'config(noreplace)' \
192 --file /opt/chilli/lang/hotspotlogin.en.pl 'config(noreplace)' \
193 --file /opt/chilli/css/sme.css 'config(noreplace)' \
194 > %{name}-%{version}-filelist
195
196 %files -f %{name}-%{version}-filelist
197 %defattr(-,root,root)
198
199 %clean
200 rm -rf $RPM_BUILD_ROOT
201
202 %pre
203 if ! /usr/bin/id coovachilli &>/dev/null; then
204 /usr/sbin/useradd -c 'Coova Chilli User' -s /sbin/nologin -r -d /etc/chilli coovachilli &>/dev/null || \
205 %logmsg "Unexpected error adding user \"coovachilli\". Abort installation."
206 fi
207
208
209 %preun
210
211 if [ $1 == 0 ]; then
212 /sbin/e-smith/db configuration setprop chilli status disabled
213 /etc/rc.d/init.d/chilli stop >& /dev/null || :
214 fi
215

admin@koozali.org
ViewVC Help
Powered by ViewVC 1.2.1 RSS 2.0 feed