rpms/glite-security-trustmanager/devel README.Fedora, NONE, 1.1 glite-security-trustmanager-log4j.properties, NONE, 1.1 glite-security-trustmanager.spec, NONE, 1.1 import.log, NONE, 1.1 trustmanager-use-vomsjapi.patch, NONE, 1.1 .cvsignore, 1.1, 1.2 sources, 1.1, 1.2
stevetraylen
stevetraylen at fedoraproject.org
Thu May 27 17:38:31 UTC 2010
Author: stevetraylen
Update of /cvs/pkgs/rpms/glite-security-trustmanager/devel
In directory cvs01.phx2.fedoraproject.org:/tmp/cvs-serv28658/devel
Modified Files:
.cvsignore sources
Added Files:
README.Fedora glite-security-trustmanager-log4j.properties
glite-security-trustmanager.spec import.log
trustmanager-use-vomsjapi.patch
Log Message:
#577974
--- NEW FILE README.Fedora ---
This README describes how to compete by the hand the
configuration of the glite-security-trustmanager rpm.
In order for security-trustmanager to be enabled within tomcat
the /etc/tomcat5/server.xml. The following block must be added
added another Connector within the <Service name="Catalina"> </Service>
tags along side the other connectors.
<Connector port="8443"
sSLImplementation="org.glite.security.trustmanager.tomcat.TMSSLImplementation"
maxThreads="150" minSpareThreads="25" maxSpareThreads="75"
enableLookups="false" disableUploadTimeout="true"
acceptCount="100" debug="0" scheme="https" secure="true"
sslCertFile="/etc/grid-security/glite-security-trustmanager/hostcert.pem"
sslKey="/etc/grid-security/glite-security-trustmanager/hostcert.pem"
log4jConfFile="/etc/glite-security-trustmanager/trustmanager-log4j.properties"
clientAuth="true" sslProtocol="TLS"
trustStoreDir="/etc/grid-security/certificates"
crlUpdateInterval="12h"
SSLEnabled="true"
/>
A minimal complete server.xml file would thus be:
<Server port="8005" shutdown="SHUTDOWN">
<Service name="Catalina">
<Connector port="8443"
maxThreads="150" minSpareThreads="25" maxSpareThreads="75"
enableLookups="false" disableUploadTimeout="true"
acceptCount="100" debug="0" scheme="https" secure="true"
sSLImplementation="org.glite.security.trustmanager.tomcat.TMSSLImplementation"
sslCertFile="/etc/grid-security/glite-security-trustmanager/hostcert.pem"
sslKey="/etc/grid-security/glite-security-trustmanager/hostcert.pem"
log4jConfFile="/etc/glite-security-trustmanager/trustmanager-log4j.properties"
clientAuth="true" sslProtocol="TLS"
trustStoreDir="/etc/grid-security/certificates"
crlUpdateInterval="12h"
SSLEnabled="true"
/>
<Engine name="Catalina" defaultHost="localhost">
<Host name="localhost" appBase="webapps" />
</Engine>
</Service>
</Server>
.
--- NEW FILE glite-security-trustmanager-log4j.properties ---
#############################################################
# Configuration file for the logging of
# org.glite.security.trustmanager
#
# Package : glite-security-trustmanager
#
#############################################################
# the default logger level is set to INFO
# possible values are: DEBUG, INFO, WARN, ERROR and FATAL
# (DEBUG shows the maximum information, FATAL least)
log4j.logger.org.glite.security=INFO, fileout
log4j.appender.fileout=org.apache.log4j.RollingFileAppender
# the OUTPUT FILE for the logging messages
log4j.appender.fileout.File=/var/log/glite-security-trustmanager/trustmanager.log
# define max file size for the debug file
log4j.appender.fileout.MaxFileSize=100KB
# Keep ten previous copies of files.
log4j.appender.fileout.MaxBackupIndex=10
log4j.appender.fileout.layout=org.apache.log4j.PatternLayout
# define the pattern of the messages
log4j.appender.fileout.layout.ConversionPattern=%d{ISO8601} %-5p [%t] %c{2} %x - %m%n
# this also outputs the method name, but is very slow
#log4j.appender.fileout.layout.ConversionPattern=%d{ISO8601} %-5p [%t] %c{2} %M %x - %m%n
--- NEW FILE glite-security-trustmanager.spec ---
%global with_gcj %{!?_without_gcj:1}%{?_without_gcj:0}
Name: glite-security-trustmanager
Version: 2.5.5
Release: 2%{?dist}
Summary: Java trustmanager interface supporting a GSI grid name space
Group: System Environment/Libraries
License: ASL 2.0
URL: https://twiki.cern.ch/twiki/bin/view/EGEE/TrustManager
# The source for this package was pulled from upstream's cvs. Use the
# following commands to generate the tarball:
# cvs -q -d:pserver:anonymous:@glite.cvs.cern.ch:/cvs/glite checkout \
# -r glite-security-trustmanager_R_2_5_5 org.glite.security.trustmanager
# find org.glite.security.trustmanager -type f -print0 | xargs -0 chmod a-x
# find org.glite.security.trustmanager -name CVS -print0 | xargs -0 rm -rf
# tar cvfz glite-security-trustmanager-2.5.5.tar.gz org.glite.security.trustmanager
Source0: %{name}-%{version}.tar.gz
Source1: README.Fedora
Source2: %{name}-log4j.properties
# trustmanager-use-vomsjapi.patch
# Since VOMSValidator class has been patched out of glite-security-util-java
# in favour of using the vomsjapi package we have to patch this to
# use org.glite.voms.VOMSValidator rather than org.glite.security.voms.VOMSValidator
Patch0: trustmanager-use-vomsjapi.patch
BuildRoot: %{_tmppath}/%{name}-%{version}-%{release}-root-%(%{__id_u} -n)
%if %{with_gcj}
BuildRequires: java-gcj-compat-devel >= 1.0.31
Requires(post): java-gcj-compat >= 1.0.31
Requires(postun): java-gcj-compat >= 1.0.31
%else
BuildArch: noarch
%endif
BuildRequires: jpackage-utils
BuildRequires: java-devel >= 1:1.6.0
BuildRequires: ant
BuildRequires: axis
BuildRequires: bouncycastle
BuildRequires: log4j
BuildRequires: vomsjapi
BuildRequires: servletapi5
BuildRequires: glite-security-util-java >= 2.5.5
BuildRequires: tomcat5-server-lib
Requires: java >= 1:1.6.0
Requires: vomsjapi
Requires: jpackage-utils
Requires: axis
Requires: bouncycastle
Requires: log4j
Requires: glite-security-util-java >= 2.5.5
Requires: servletapi5
%description
glite-security-trustmanager together with glite-security-util-java is
an implementation of the java TrustManager interface with implementation
of cert path checking, grid name space restrictions and dynamic loading
of CA certs, credentials, CRLs and name space restrictions.
Also provided is integration into tomcat, axis and axis2. There
are many utility classes and methods for certificate and proxy handling
in glite-security-util-java. It can be used both in the server side for
the server SSL handler and on the client side for the opening of SSL
connections.
%package tomcat5
Summary: Java trustmanager interface supporting a GSI grid name space
Group: System Environment/Libraries
Requires: %{name} = %{version}-%{release}
Requires: tomcat5
%if %{?fedora}%{!?fedora:0} >= 10 || %{?rhel}%{!?rhel:0} >= 6
BuildArch: noarch
%endif
%description tomcat5
glite-security-trustmanager together with glite-security-util-java is
an implementation of the java TrustManager interface with implementation
of cert path checking, grid name space restrictions and dynamic loading
of CA certs, credentials, CRLs and name space restrictions.
Also provided is integration into tomcat, axis and axis2. There
are many utility classes and methods for certificate and proxy handling
in util-java. It can be used both in the server side for the server SSL
handler and on the client side for the opening of SSL connections.
glite-security-trustmanager-tomcat5 provides the necessary files
for a tomcat connector to be set up.
%package javadoc
Summary: Documentation as javadocs for %{name}
Group: Documentation
%if %{?fedora}%{!?fedora:0} >= 10 || %{?rhel}%{!?rhel:0} >= 6
BuildArch: noarch
%endif
Requires: %{name} = %{version}-%{release}
Requires: jpackage-utils
%description javadoc
This package contains the API documentation for %{name}.
%prep
%setup -q -n org.glite.security.trustmanager
%patch0 -p1
find -name '*.jar' -o -name '*.class' -exec rm -f '{}' \;
cp %{SOURCE1} .
cp %{SOURCE2} .
%build
export CLASSPATH=$(build-classpath vomsjapi tomcat5 glite-security-util-java servletapi5 commons-logging bcprov log4j axis)
%ant -q -Dprefix=build compile-extcp
%ant -Dprefix=build doc-extcp
%install
rm -rf $RPM_BUILD_ROOT
mkdir -p $RPM_BUILD_ROOT%{_javadir}
cp -p build/share/java/%{name}.jar \
$RPM_BUILD_ROOT%{_javadir}/%{name}-%{version}.jar
(cd %{buildroot}%{_javadir} && for jar in *-%{version}*; do ln -sf ${jar} `echo $jar| sed "s|-%{version}||g"`; done)
mkdir -p $RPM_BUILD_ROOT%{_javadocdir}/%{name}
cp -rp build/share/%{name}/doc/html/* \
$RPM_BUILD_ROOT%{_javadocdir}/%{name}
%if %{with_gcj}
%{_bindir}/aot-compile-rpm
%endif
mkdir -p $RPM_BUILD_ROOT/%{_sysconfdir}/grid-security/%{name}
mkdir -p $RPM_BUILD_ROOT/%{_sysconfdir}/%{name}
mkdir -p $RPM_BUILD_ROOT/%{_var}/log/%{name}
cp -p %{name}-log4j.properties $RPM_BUILD_ROOT/%{_sysconfdir}/%{name}/trustmanager-log4j.properties
%post
%if %{with_gcj}
if [ -x %{_bindir}/rebuild-gcj-db ]
then
%{_bindir}/rebuild-gcj-db
fi
%endif
%post tomcat5
# This is bad packaging: The symbolic links created below are needed
# but they are not cleaned up when the package is removed and it is not
# obvious that removing them will do more harm than good.
# tomcat5 seems to be perfectly happy to run with dangling symlinks
# and they are cleaned up when the tomcat5 package itself is removed.
build-jar-repository /var/lib/tomcat5/server/lib log4j bcprov vomsjapi \
glite-security-util-java %{name}
%postun
%if %{with_gcj}
if [ -x %{_bindir}/rebuild-gcj-db ]
then
%{_bindir}/rebuild-gcj-db
fi
%endif
%clean
rm -rf $RPM_BUILD_ROOT
%files
%defattr(-,root,root,-)
%{_javadir}/*
%if %{with_gcj}
%dir %{_libdir}/gcj/%{name}
%{_libdir}/gcj/%{name}/%{name}-%{version}.jar.*
%endif
%dir %{_sysconfdir}/%{name}
%config(noreplace) %{_sysconfdir}/%{name}/trustmanager-log4j.properties
%doc LICENSE doc/USAGE
%files tomcat5
%defattr(-,root,root,-)
%dir %{_sysconfdir}/grid-security
%dir %{_sysconfdir}/grid-security/%{name}
%dir %attr(-,tomcat,tomcat) %{_var}/log/%{name}
%doc README.Fedora
%files javadoc
%defattr(-,root,root,-)
%{_javadocdir}/%{name}
%changelog
* Sat May 22 2010 Steve Traylen <steve.traylen at cern.ch> - 2.5.5-2
- Various fixes following fedora review process.
* Fri Apr 29 2010 Steve Traylen <steve.traylen at cern.ch> - 2.5.5-1
- Upstream to 2.5.5
- Drop external classpath patch since now upstream.
- New BR and R vomsjapi
- glite-security-util-java minimum version 2.5.5.
- Add trustmanager-use-vomsjapi.patch
* Mon Mar 29 2010 Steve Traylen <steve.traylen at cern.ch> - 2.0.6-3
- Add README.Fedora describing how to configure the server.xml file.
- Create a -tomcat5 subpackage.
* Thu Dec 10 2009 Steve Traylen <steve.traylen at cern.ch> - 2.0.6-2
- Add in default configuration files.
* Sun Sep 12 2009 Steve Traylen <steve.traylen at cern.ch> - 2.0.6-1
- Initial build.
--- NEW FILE import.log ---
glite-security-trustmanager-2_5_5-2_fc13:HEAD:glite-security-trustmanager-2.5.5-2.fc13.src.rpm:1274981835
trustmanager-use-vomsjapi.patch:
TestServerTest.java | 2 +-
axis/EchoServiceSoapBindingImpl.java | 2 +-
tomcat/EchoSecurity.java | 2 +-
3 files changed, 3 insertions(+), 3 deletions(-)
--- NEW FILE trustmanager-use-vomsjapi.patch ---
diff -uNr org.glite.security.trustmanager.ORIG/test/src/org/glite/security/trustmanager/axis/EchoServiceSoapBindingImpl.java org.glite.security.trustmanager/test/src/org/glite/security/trustmanager/axis/EchoServiceSoapBindingImpl.java
--- org.glite.security.trustmanager.ORIG/test/src/org/glite/security/trustmanager/axis/EchoServiceSoapBindingImpl.java 2010-04-30 17:49:07.007306486 +0200
+++ org.glite.security.trustmanager/test/src/org/glite/security/trustmanager/axis/EchoServiceSoapBindingImpl.java 2010-04-30 17:52:04.394304546 +0200
@@ -33,7 +33,7 @@
import org.glite.security.SecurityInfoContainer;
import org.glite.security.util.DNHandler;
import org.glite.security.util.axis.InitSecurityContext;
-import org.glite.security.voms.VOMSValidator;
+import org.glite.voms.VOMSValidator;
/**
diff -uNr org.glite.security.trustmanager.ORIG/test/src/org/glite/security/trustmanager/TestServerTest.java org.glite.security.trustmanager/test/src/org/glite/security/trustmanager/TestServerTest.java
--- org.glite.security.trustmanager.ORIG/test/src/org/glite/security/trustmanager/TestServerTest.java 2010-04-30 17:49:07.007306486 +0200
+++ org.glite.security.trustmanager/test/src/org/glite/security/trustmanager/TestServerTest.java 2010-04-30 17:52:51.927306823 +0200
@@ -32,7 +32,7 @@
import javax.net.ssl.SSLSocket;
import org.glite.security.voms.BasicVOMSTrustStore;
-import org.glite.security.voms.VOMSValidator;
+import org.glite.security.VOMSValidator;
import org.glite.security.voms.ac.ACValidator;
public class TestServerTest {
diff -uNr org.glite.security.trustmanager.ORIG/test/src/org/glite/security/trustmanager/tomcat/EchoSecurity.java org.glite.security.trustmanager/test/src/org/glite/security/trustmanager/tomcat/EchoSecurity.java
--- org.glite.security.trustmanager.ORIG/test/src/org/glite/security/trustmanager/tomcat/EchoSecurity.java 2010-04-30 17:49:07.008305529 +0200
+++ org.glite.security.trustmanager/test/src/org/glite/security/trustmanager/tomcat/EchoSecurity.java 2010-04-30 17:53:23.061616665 +0200
@@ -32,7 +32,7 @@
import org.glite.security.SecurityInfo;
import org.glite.security.SecurityInfoContainer;
import org.glite.security.util.DNHandler;
-import org.glite.security.voms.VOMSValidator;
+import org.glite.voms.VOMSValidator;
/**
* @author Joni Hahkala <joni.hahkala at cern.ch> Created on Oct 11, 2004
Index: .cvsignore
===================================================================
RCS file: /cvs/pkgs/rpms/glite-security-trustmanager/devel/.cvsignore,v
retrieving revision 1.1
retrieving revision 1.2
diff -u -p -r1.1 -r1.2
--- .cvsignore 25 May 2010 20:59:22 -0000 1.1
+++ .cvsignore 27 May 2010 17:38:29 -0000 1.2
@@ -0,0 +1 @@
+glite-security-trustmanager-2.5.5.tar.gz
Index: sources
===================================================================
RCS file: /cvs/pkgs/rpms/glite-security-trustmanager/devel/sources,v
retrieving revision 1.1
retrieving revision 1.2
diff -u -p -r1.1 -r1.2
--- sources 25 May 2010 20:59:22 -0000 1.1
+++ sources 27 May 2010 17:38:30 -0000 1.2
@@ -0,0 +1 @@
+b0b4ca85006801ab39ba5fef421f9b25 glite-security-trustmanager-2.5.5.tar.gz
More information about the scm-commits
mailing list