# # spec file for package pam_pkcs11 (Version 0.5.3) # # Copyright (c) 2006 SUSE LINUX Products GmbH, Nuernberg, Germany. # This file and all modifications and additions to the pristine # package are under the same license as the package itself. # # Please submit bugfixes or comments via http://bugs.opensuse.org/ # # norootforbuild Name: pam_pkcs11 Version: 0.5.3 Release: 3 URL: http://www.opensc-project.org/pam_pkcs11/ Group: Productivity/Security License: LGPL Summary: PKCS #11 PAM module Source: %{name}-%{version}.tar.bz2 Autoreqprov: on BuildRequires: curl-devel libxslt openldap2-devel openssl-devel pam-devel pcsc-lite-devel pkgconfig BuildRoot: %{_tmppath}/%{name}-%{version}-build %description This Linux-PAM module allows a X.509 certificate based user authentication. The certificate and its dedicated private key are thereby accessed by means of an appropriate PKCS #11 module. For the verification of the users' certificates, locally stored CA certificates as well as either online or locally accessible CRLs are used. Adittional included pam_pkcs11 related tools - pkcs11_eventmgr: Generate actions on card insert/removal/timeout events - pklogin_finder: Get the loginname that maps to a certificate - pkcs11_inspect: Inspect the contents of a certificate - make_hash_links: create hash link directories for storeing CA's and CRL's Authors: -------- Mario Strasser Juan Antonio Martinez Antti Tapaninen Timo Sirainen Ludovic Rousseau Andreas Jellinghaus Dominik Fischer Ville Skyttä %prep %setup %build # LDAP_DEPRECATED required for for ldap_simple_bind_s(), ldap_search_s(), ldap_unbind_s() export CFLAGS="$RPM_OPT_FLAGS -DLDAP_DEPRECATED" ./configure\ --prefix=/usr\ --libdir=/usr/%{_lib}\ --datadir=%{_defaultdocdir}\ --mandir=/usr/share/man\ --with-curl make %{?jobs:-j %jobs} %install make DESTDIR=$RPM_BUILD_ROOT install mkdir -p $RPM_BUILD_ROOT/%{_lib} mv $RPM_BUILD_ROOT/usr/%{_lib}/security $RPM_BUILD_ROOT/%{_lib} rm $RPM_BUILD_ROOT/usr/%{_lib}/pam_pkcs11/*.*a #$RPM_BUILD_ROOT/%{_lib}/security/*.*a # Hardcoded defaults... no sysconfdir install -dm 755 $RPM_BUILD_ROOT/etc/pam_pkcs11/cacerts install -dm 755 $RPM_BUILD_ROOT/etc/pam_pkcs11/crls cd etc for conf in *.conf.example ; do install -m 644 ${conf} $RPM_BUILD_ROOT/etc/pam_pkcs11/${conf%.example} done cd .. mkdir -p $RPM_BUILD_ROOT%{_defaultdocdir}/%{name} cp -a AUTHORS COPYING ChangeLog NEWS README TODO doc/pam_pkcs11.html doc/mappers_api.html doc/README.autologin doc/README.mappers $RPM_BUILD_ROOT%{_defaultdocdir}/%{name} %clean rm -rf $RPM_BUILD_ROOT %files %defattr (-, root, root) %doc %{_defaultdocdir}/%{name} %dir /etc/pam_pkcs11 %dir /etc/pam_pkcs11/cacerts %dir /etc/pam_pkcs11/crls %config(noreplace) /etc/pam_pkcs11/*.conf /usr/%{_lib}/pam_pkcs11 /%{_lib}/security/*.so /usr/bin/* %doc /usr/share/man/man?/*.* %changelog -n pam_pkcs11 * Fri May 12 2006 - sbrabec@suse.cz - New SuSE package, version 0.5.3.