diff --git a/security/Makefile b/security/Makefile index dfcf1c84c852..276b83d3a083 100644 --- a/security/Makefile +++ b/security/Makefile @@ -1,1322 +1,1323 @@ COMMENT = Security tools SUBDIR += 0d1n SUBDIR += 1password-client SUBDIR += 1password-client2 SUBDIR += 1password-client2-beta SUBDIR += 2fa SUBDIR += ADMsmb SUBDIR += ADMsnmp SUBDIR += R-cran-ROAuth SUBDIR += R-cran-askpass SUBDIR += R-cran-credentials SUBDIR += R-cran-digest SUBDIR += R-cran-gitcreds SUBDIR += R-cran-openssl SUBDIR += acme.sh SUBDIR += acmed SUBDIR += acmetool SUBDIR += aescrypt SUBDIR += aespipe SUBDIR += afl++ SUBDIR += afterglow SUBDIR += age SUBDIR += aide SUBDIR += akmos SUBDIR += amavisd-milter SUBDIR += amavisd-new SUBDIR += apache-xml-security-c SUBDIR += apg SUBDIR += apkid SUBDIR += archlinux-keyring SUBDIR += arpCounterattack SUBDIR += arti SUBDIR += asignify SUBDIR += assh SUBDIR += authenticator SUBDIR += autossh SUBDIR += aws-c-auth SUBDIR += aws-c-cal SUBDIR += aws-iam-authenticator SUBDIR += aws-vault SUBDIR += axc SUBDIR += barnyard2 SUBDIR += barnyard2-sguil SUBDIR += bastillion SUBDIR += bcrypt SUBDIR += bcwipe SUBDIR += bdes SUBDIR += bearssl SUBDIR += beecrypt SUBDIR += beid SUBDIR += belier SUBDIR += bfbtester SUBDIR += binwalk SUBDIR += boringssl SUBDIR += botan2 SUBDIR += bruteblock SUBDIR += bsdsfv SUBDIR += bsmtrace SUBDIR += bsmtrace3 SUBDIR += bzrtp SUBDIR += ca_root_nss SUBDIR += caesarcipher SUBDIR += calife SUBDIR += cardpeek SUBDIR += cargo-audit SUBDIR += ccrypt SUBDIR += ccsrch SUBDIR += certmgr SUBDIR += cfs SUBDIR += cfssl SUBDIR += cfv SUBDIR += chaosreader SUBDIR += checkpassword SUBDIR += checkpassword-pam SUBDIR += chkrootkit SUBDIR += chntpw SUBDIR += chroot_safe SUBDIR += chrootuid SUBDIR += ckpass SUBDIR += cksfv SUBDIR += cl-md5 SUBDIR += cl-md5-sbcl SUBDIR += clamassassin SUBDIR += clamav SUBDIR += clamav-lts SUBDIR += clamav-unofficial-sigs SUBDIR += clamd-stream-client SUBDIR += clamfs SUBDIR += clamsmtp SUBDIR += clamtk SUBDIR += cloak SUBDIR += clusterssh SUBDIR += cops SUBDIR += courier-authlib SUBDIR += courier-authlib-base SUBDIR += courierpassd SUBDIR += courierpasswd SUBDIR += courieruserinfo SUBDIR += cowrie SUBDIR += cracklib SUBDIR += crackpkcs12 SUBDIR += create-cert SUBDIR += crlfuzz SUBDIR += crowdsec SUBDIR += crowdsec-firewall-bouncer SUBDIR += cryptlib SUBDIR += cryptopp SUBDIR += ct-submit SUBDIR += cvechecker SUBDIR += cvm SUBDIR += cyberchef SUBDIR += cyrus-sasl2 SUBDIR += cyrus-sasl2-gssapi SUBDIR += cyrus-sasl2-ldapdb SUBDIR += cyrus-sasl2-saslauthd SUBDIR += cyrus-sasl2-sql SUBDIR += cyrus-sasl2-srp SUBDIR += d0_blind_id SUBDIR += dehydrated SUBDIR += denyhosts SUBDIR += destroy SUBDIR += diffcode SUBDIR += digestpp SUBDIR += dirbuster SUBDIR += dirmngr SUBDIR += distcache SUBDIR += doas SUBDIR += dotdotpwn SUBDIR += dropbear SUBDIR += dsniff SUBDIR += dsvpn SUBDIR += duo SUBDIR += duo_openvpn SUBDIR += easy-rsa SUBDIR += enchive SUBDIR += eschalot SUBDIR += esteidfirefoxplugin SUBDIR += expiretable SUBDIR += f-prot SUBDIR += fakebo SUBDIR += fakeident SUBDIR += fakeroot SUBDIR += farmhash SUBDIR += fcheck SUBDIR += fcrackzip SUBDIR += ffuf SUBDIR += fiked SUBDIR += fizz SUBDIR += fl0p SUBDIR += flawfinder SUBDIR += fpc-gnutls SUBDIR += fpc-openssl SUBDIR += fprint_demo SUBDIR += fprintd SUBDIR += fragroute SUBDIR += fragrouter SUBDIR += fswatch SUBDIR += ftimes SUBDIR += fuzz SUBDIR += fwanalog SUBDIR += fwbuilder SUBDIR += fwknop SUBDIR += fwlogwatch SUBDIR += gcr SUBDIR += gef SUBDIR += git-credential-gopass SUBDIR += git-crypt SUBDIR += git-remote-gcrypt SUBDIR += git-secret SUBDIR += gitjacker SUBDIR += globalprotect-openconnect SUBDIR += gnome-keyring SUBDIR += gnome-keyring-sharp SUBDIR += gnome-ssh-askpass SUBDIR += gnupg SUBDIR += gnupg-pkcs11-scd SUBDIR += gnupg1 SUBDIR += gnutls SUBDIR += go-cve-dictionary SUBDIR += gokart SUBDIR += gonepass SUBDIR += gopass SUBDIR += gorilla SUBDIR += gost-engine SUBDIR += gpa SUBDIR += gpg-gui SUBDIR += gpg-tui SUBDIR += gpgdir SUBDIR += gpgme SUBDIR += gpgme-cpp SUBDIR += gpgme-qt5 SUBDIR += gsa SUBDIR += gsad SUBDIR += gsasl SUBDIR += gstreamer1-plugins-dtls SUBDIR += gtkpasman SUBDIR += gvm SUBDIR += gvm-libs SUBDIR += gvmd SUBDIR += hardening-check SUBDIR += hash SUBDIR += hashcat SUBDIR += heaan SUBDIR += headscale SUBDIR += heimdal SUBDIR += helib SUBDIR += hexl SUBDIR += highwayhash SUBDIR += hitch SUBDIR += hockeypuck SUBDIR += honeytrap SUBDIR += honggfuzz SUBDIR += horcrux SUBDIR += hpenc SUBDIR += hs-cryptol SUBDIR += hydra SUBDIR += hyperhotp SUBDIR += i2p SUBDIR += i2pd SUBDIR += iaikpkcs11wrapper SUBDIR += iddawc SUBDIR += idea SUBDIR += identify SUBDIR += imds-filterd SUBDIR += intel-ipsec-mb SUBDIR += ipfmeta SUBDIR += ipguard SUBDIR += ipsec-tools SUBDIR += ipv6toolkit SUBDIR += isal-kmod SUBDIR += isnprober SUBDIR += john SUBDIR += kbfsd SUBDIR += kc24 SUBDIR += kdbxviewer SUBDIR += keepass SUBDIR += keepass-plugin-keepassrpc SUBDIR += keepassxc SUBDIR += keybase SUBDIR += keychain SUBDIR += keynote SUBDIR += keyprint SUBDIR += kf5-kdesu SUBDIR += kgpg SUBDIR += kickpass SUBDIR += klee SUBDIR += kleopatra SUBDIR += knock SUBDIR += knocker SUBDIR += kpcli SUBDIR += kpkpass SUBDIR += kpmenu SUBDIR += krb5 SUBDIR += krb5-118 SUBDIR += krb5-119 SUBDIR += krb5-120 SUBDIR += krb5-appl SUBDIR += krb5-devel SUBDIR += kstart SUBDIR += ktls_isa-l_crypto-kmod SUBDIR += kuku SUBDIR += kwalletmanager SUBDIR += l0pht-watch SUBDIR += lasso SUBDIR += lastpass-cli SUBDIR += lego SUBDIR += libargon2 SUBDIR += libassuan SUBDIR += libcryptui SUBDIR += libdecaf SUBDIR += libecc SUBDIR += libfido2 SUBDIR += libfprint SUBDIR += libgcrypt SUBDIR += libgnome-keyring SUBDIR += libgpg-error SUBDIR += libgsasl SUBDIR += libhijack SUBDIR += libident SUBDIR += libkleo SUBDIR += libkpass SUBDIR += libksba SUBDIR += libmcrypt SUBDIR += libnitrokey SUBDIR += libntlm SUBDIR += libomemo SUBDIR += liboqs SUBDIR += libotr SUBDIR += libotr3 SUBDIR += libp11 SUBDIR += libpki SUBDIR += libprelude SUBDIR += libpreludedb SUBDIR += libpwquality SUBDIR += libressl SUBDIR += libressl-devel SUBDIR += libreswan SUBDIR += libretls SUBDIR += libscep SUBDIR += libscrypt SUBDIR += libsecret SUBDIR += libsectok SUBDIR += libsodium SUBDIR += libssh SUBDIR += libssh2 SUBDIR += libtasn1 SUBDIR += libtomcrypt SUBDIR += libu2f-host SUBDIR += libuecc SUBDIR += libwhisker SUBDIR += libxcrypt SUBDIR += libyubikey SUBDIR += libzrtpcppcore SUBDIR += lime SUBDIR += linux-bitwarden-cli SUBDIR += linux-c7-cyrus-sasl2 SUBDIR += linux-c7-gnutls SUBDIR += linux-c7-libgcrypt SUBDIR += linux-c7-libgpg-error SUBDIR += linux-c7-libssh2 SUBDIR += linux-c7-libtasn1 SUBDIR += linux-c7-nettle SUBDIR += linux-c7-nss SUBDIR += linux-c7-openssl-devel SUBDIR += linux-c7-p11-kit SUBDIR += linux-c7-trousers SUBDIR += logcheck SUBDIR += lua-bcrypt SUBDIR += luasec SUBDIR += lxqt-openssh-askpass SUBDIR += lxqt-sudo SUBDIR += lynis SUBDIR += mac-robber SUBDIR += maia SUBDIR += mailzu SUBDIR += makepasswd SUBDIR += maltrail SUBDIR += masscan SUBDIR += mate-pam-helper SUBDIR += mbedtls SUBDIR += mcrypt SUBDIR += md5deep SUBDIR += medusa SUBDIR += meek SUBDIR += metasploit SUBDIR += mhash SUBDIR += mindterm-binary SUBDIR += minisign SUBDIR += mkp224o SUBDIR += modsecurity3 SUBDIR += modsecurity3-nginx SUBDIR += monkeysphere SUBDIR += munge SUBDIR += n2n SUBDIR += ncrack SUBDIR += ncrypt SUBDIR += nebula SUBDIR += nettle SUBDIR += nextcloud-end_to_end_encryption SUBDIR += nextcloud-passman SUBDIR += nextcloud-twofactor_admin SUBDIR += nextcloud-twofactor_nextcloud_notification SUBDIR += nextcloud-twofactor_webauthn SUBDIR += nflib SUBDIR += ngrok SUBDIR += nikto SUBDIR += nist-kat SUBDIR += nitrokey-app SUBDIR += nmap SUBDIR += nss SUBDIR += nss_compat_ossl SUBDIR += nuclei SUBDIR += nyx SUBDIR += oath-toolkit SUBDIR += obfs4proxy-tor SUBDIR += ocaml-cryptgps SUBDIR += ocaml-cryptokit SUBDIR += ocaml-ssl SUBDIR += oidentd SUBDIR += oinkmaster SUBDIR += olm SUBDIR += onionscan SUBDIR += op SUBDIR += openbsm SUBDIR += openca-ocspd SUBDIR += openconnect SUBDIR += openconnect-freebsd-daemon SUBDIR += openconnect-gui SUBDIR += opencryptoki SUBDIR += openct SUBDIR += openfortivpn SUBDIR += openiked SUBDIR += openiked-portable SUBDIR += opensaml SUBDIR += opensc SUBDIR += openscep SUBDIR += openssh-askpass SUBDIR += openssh-portable SUBDIR += openssl SUBDIR += openssl-devel SUBDIR += openssl-quictls SUBDIR += openssl-unsafe SUBDIR += openssl_tpm_engine SUBDIR += openvas SUBDIR += openvpn SUBDIR += openvpn-admin SUBDIR += openvpn-auth-ldap SUBDIR += openvpn-auth-radius SUBDIR += openvpn-auth-script SUBDIR += openvpn-devel SUBDIR += ophcrack SUBDIR += ossec-hids SUBDIR += ossec-hids-agent SUBDIR += ossec-hids-agent-config SUBDIR += ossec-hids-local SUBDIR += ossec-hids-local-config SUBDIR += ossec-hids-server SUBDIR += ossec-hids-server-config SUBDIR += osslsigncode SUBDIR += otpw SUBDIR += owasp-dependency-check SUBDIR += p11-kit SUBDIR += p5-Alt-Crypt-RSA-BigInt SUBDIR += p5-Apache-Htpasswd SUBDIR += p5-App-Acmeman SUBDIR += p5-App-Genpass SUBDIR += p5-App-TLSMe SUBDIR += p5-Auth-YubikeyDecrypter SUBDIR += p5-AuthCAS SUBDIR += p5-Authen-Bitcard SUBDIR += p5-Authen-Captcha SUBDIR += p5-Authen-CyrusSASL SUBDIR += p5-Authen-DecHpwd SUBDIR += p5-Authen-Htpasswd SUBDIR += p5-Authen-Krb5 SUBDIR += p5-Authen-Krb5-Simple SUBDIR += p5-Authen-Libwrap SUBDIR += p5-Authen-NTLM SUBDIR += p5-Authen-OATH SUBDIR += p5-Authen-PAAS SUBDIR += p5-Authen-PAM SUBDIR += p5-Authen-Passphrase SUBDIR += p5-Authen-PluggableCaptcha SUBDIR += p5-Authen-Radius SUBDIR += p5-Authen-SASL SUBDIR += p5-Authen-SASL-Cyrus SUBDIR += p5-Authen-SASL-SASLprep SUBDIR += p5-Authen-SCRAM SUBDIR += p5-Authen-Simple SUBDIR += p5-Authen-Simple-DBI SUBDIR += p5-Authen-Simple-DBM SUBDIR += p5-Authen-Simple-HTTP SUBDIR += p5-Authen-Simple-Kerberos SUBDIR += p5-Authen-Simple-LDAP SUBDIR += p5-Authen-Simple-Net SUBDIR += p5-Authen-Simple-PAM SUBDIR += p5-Authen-Simple-Passwd SUBDIR += p5-Authen-Simple-RADIUS SUBDIR += p5-Authen-Simple-SMB SUBDIR += p5-Authen-Simple-SSH SUBDIR += p5-Authen-Smb SUBDIR += p5-Authen-TacacsPlus SUBDIR += p5-Authen-Ticket SUBDIR += p5-Authen-TypeKey SUBDIR += p5-Business-PayPal-EWP SUBDIR += p5-Bytes-Random-Secure SUBDIR += p5-Bytes-Random-Secure-Tiny SUBDIR += p5-CACertOrg-CA SUBDIR += p5-CSP SUBDIR += p5-Cisco-Hash SUBDIR += p5-Crypt-Anubis SUBDIR += p5-Crypt-AppleTwoFish SUBDIR += p5-Crypt-Argon2 SUBDIR += p5-Crypt-Bcrypt SUBDIR += p5-Crypt-Blowfish SUBDIR += p5-Crypt-Blowfish_PP SUBDIR += p5-Crypt-CAST5 SUBDIR += p5-Crypt-CAST5_PP SUBDIR += p5-Crypt-CBC SUBDIR += p5-Crypt-CBCeasy SUBDIR += p5-Crypt-CFB SUBDIR += p5-Crypt-Caesar SUBDIR += p5-Crypt-Camellia_PP SUBDIR += p5-Crypt-Chimera SUBDIR += p5-Crypt-CipherSaber SUBDIR += p5-Crypt-Cracklib SUBDIR += p5-Crypt-Ctr SUBDIR += p5-Crypt-Curve25519 SUBDIR += p5-Crypt-DES SUBDIR += p5-Crypt-DES_EDE3 SUBDIR += p5-Crypt-DES_PP SUBDIR += p5-Crypt-DH SUBDIR += p5-Crypt-DSA SUBDIR += p5-Crypt-Dining SUBDIR += p5-Crypt-ECB SUBDIR += p5-Crypt-Eksblowfish SUBDIR += p5-Crypt-Enigma SUBDIR += p5-Crypt-Format SUBDIR += p5-Crypt-GCrypt SUBDIR += p5-Crypt-GOST SUBDIR += p5-Crypt-GOST_PP SUBDIR += p5-Crypt-GPG SUBDIR += p5-Crypt-GeneratePassword SUBDIR += p5-Crypt-GpgME SUBDIR += p5-Crypt-HCE_MD5 SUBDIR += p5-Crypt-HCE_SHA SUBDIR += p5-Crypt-HSXKPasswd SUBDIR += p5-Crypt-IDEA SUBDIR += p5-Crypt-Imail SUBDIR += p5-Crypt-JWT SUBDIR += p5-Crypt-Juniper SUBDIR += p5-Crypt-Khazad SUBDIR += p5-Crypt-LE SUBDIR += p5-Crypt-LibSCEP SUBDIR += p5-Crypt-License SUBDIR += p5-Crypt-Lite SUBDIR += p5-Crypt-Loki97 SUBDIR += p5-Crypt-MySQL SUBDIR += p5-Crypt-NULL SUBDIR += p5-Crypt-OFB SUBDIR += p5-Crypt-OICQ SUBDIR += p5-Crypt-OTP SUBDIR += p5-Crypt-OpenPGP SUBDIR += p5-Crypt-OpenSSL-AES SUBDIR += p5-Crypt-OpenSSL-Bignum SUBDIR += p5-Crypt-OpenSSL-CA SUBDIR += p5-Crypt-OpenSSL-DSA SUBDIR += p5-Crypt-OpenSSL-EC SUBDIR += p5-Crypt-OpenSSL-ECDSA SUBDIR += p5-Crypt-OpenSSL-Guess SUBDIR += p5-Crypt-OpenSSL-PKCS10 SUBDIR += p5-Crypt-OpenSSL-RSA SUBDIR += p5-Crypt-OpenSSL-Random SUBDIR += p5-Crypt-OpenSSL-Verify SUBDIR += p5-Crypt-OpenSSL-X509 SUBDIR += p5-Crypt-PBKDF2 SUBDIR += p5-Crypt-PKCS10 SUBDIR += p5-Crypt-PWSafe3 SUBDIR += p5-Crypt-PassGen SUBDIR += p5-Crypt-Passwd-XS SUBDIR += p5-Crypt-PasswdMD5 SUBDIR += p5-Crypt-Password-Util SUBDIR += p5-Crypt-Perl SUBDIR += p5-Crypt-Primes SUBDIR += p5-Crypt-RC4 SUBDIR += p5-Crypt-RC5 SUBDIR += p5-Crypt-RC6 SUBDIR += p5-Crypt-RHash SUBDIR += p5-Crypt-RIPEMD160 SUBDIR += p5-Crypt-RSA SUBDIR += p5-Crypt-RSA-Parse SUBDIR += p5-Crypt-RSA-Yandex SUBDIR += p5-Crypt-Rabbit SUBDIR += p5-Crypt-RandPasswd SUBDIR += p5-Crypt-Random SUBDIR += p5-Crypt-Random-Seed SUBDIR += p5-Crypt-Random-Source SUBDIR += p5-Crypt-Random-TESHA2 SUBDIR += p5-Crypt-Rijndael SUBDIR += p5-Crypt-Rijndael_PP SUBDIR += p5-Crypt-SKey SUBDIR += p5-Crypt-SMIME SUBDIR += p5-Crypt-SSLeay SUBDIR += p5-Crypt-SSSS SUBDIR += p5-Crypt-Salt SUBDIR += p5-Crypt-SaltedHash SUBDIR += p5-Crypt-Serpent SUBDIR += p5-Crypt-Shark SUBDIR += p5-Crypt-Simple SUBDIR += p5-Crypt-SmbHash SUBDIR += p5-Crypt-Sodium SUBDIR += p5-Crypt-Solitaire SUBDIR += p5-Crypt-TEA SUBDIR += p5-Crypt-T_e_a SUBDIR += p5-Crypt-Tea_JS SUBDIR += p5-Crypt-TripleDES SUBDIR += p5-Crypt-Twofish SUBDIR += p5-Crypt-Twofish2 SUBDIR += p5-Crypt-Twofish_PP SUBDIR += p5-Crypt-URandom SUBDIR += p5-Crypt-UnixCrypt SUBDIR += p5-Crypt-UnixCrypt_XS SUBDIR += p5-Crypt-X509 SUBDIR += p5-Crypt-X509-CRL SUBDIR += p5-Crypt-XTEA SUBDIR += p5-Crypt-xDBM_File SUBDIR += p5-CryptX SUBDIR += p5-Dancer-Plugin-Auth-Extensible SUBDIR += p5-Dancer-Plugin-Auth-Extensible-Provider-Usergroup SUBDIR += p5-Dancer-Plugin-Passphrase SUBDIR += p5-Dancer2-Plugin-Auth-Extensible SUBDIR += p5-Dancer2-Plugin-Auth-Extensible-Provider-DBIC SUBDIR += p5-Dancer2-Plugin-Auth-Extensible-Provider-Database SUBDIR += p5-Dancer2-Plugin-Auth-Extensible-Provider-IMAP SUBDIR += p5-Dancer2-Plugin-Auth-Extensible-Provider-Usergroup SUBDIR += p5-Dancer2-Plugin-Passphrase SUBDIR += p5-Data-Entropy SUBDIR += p5-Data-Password SUBDIR += p5-Digest SUBDIR += p5-Digest-Adler32 SUBDIR += p5-Digest-Bcrypt SUBDIR += p5-Digest-BubbleBabble SUBDIR += p5-Digest-CRC SUBDIR += p5-Digest-Crc32 SUBDIR += p5-Digest-DJB SUBDIR += p5-Digest-DMAC SUBDIR += p5-Digest-EMAC SUBDIR += p5-Digest-Elf SUBDIR += p5-Digest-FNV SUBDIR += p5-Digest-GOST SUBDIR += p5-Digest-HMAC SUBDIR += p5-Digest-Hashcash SUBDIR += p5-Digest-Haval256 SUBDIR += p5-Digest-JHash SUBDIR += p5-Digest-MD2 SUBDIR += p5-Digest-MD4 SUBDIR += p5-Digest-MD5 SUBDIR += p5-Digest-MD5-File SUBDIR += p5-Digest-MD5-M4p SUBDIR += p5-Digest-MD5-Reverse SUBDIR += p5-Digest-ManberHash SUBDIR += p5-Digest-MurmurHash SUBDIR += p5-Digest-Nilsimsa SUBDIR += p5-Digest-Pearson SUBDIR += p5-Digest-Pearson-PurePerl SUBDIR += p5-Digest-Perl-MD4 SUBDIR += p5-Digest-Perl-MD5 SUBDIR += p5-Digest-SHA SUBDIR += p5-Digest-SHA-PurePerl SUBDIR += p5-Digest-SHA1 SUBDIR += p5-Digest-SHA3 SUBDIR += p5-Digest-SV1 SUBDIR += p5-Digest-Tiger SUBDIR += p5-Digest-Whirlpool SUBDIR += p5-File-KeePass SUBDIR += p5-File-KeePass-Agent SUBDIR += p5-File-Scan SUBDIR += p5-File-Scan-ClamAV SUBDIR += p5-Filter-CBC SUBDIR += p5-Filter-Crypto SUBDIR += p5-GD-SecurityImage SUBDIR += p5-GSSAPI SUBDIR += p5-GnuPG SUBDIR += p5-GnuPG-Interface SUBDIR += p5-HTML-Email-Obfuscate SUBDIR += p5-Heimdal-Kadm5 SUBDIR += p5-IO-Async-SSL SUBDIR += p5-IO-Socket-SSL SUBDIR += p5-MD5 SUBDIR += p5-Mcrypt SUBDIR += p5-Module-Signature SUBDIR += p5-Net-Daemon-SSL SUBDIR += p5-Net-OpenID-Common SUBDIR += p5-Net-OpenID-JanRain SUBDIR += p5-Net-OpenID-Server SUBDIR += p5-Net-Radius-Server SUBDIR += p5-Net-SAML SUBDIR += p5-Net-SAML2 SUBDIR += p5-Net-SSH-AuthorizedKeysFile SUBDIR += p5-Net-SSL-ExpireDate SUBDIR += p5-Net-SSLGlue SUBDIR += p5-Net-SSLeay SUBDIR += p5-Net-Server-Mail-ESMTP-AUTH SUBDIR += p5-Net-SinFP SUBDIR += p5-Nmap-Parser SUBDIR += p5-Nmap-Scanner SUBDIR += p5-OpenCA-CRL SUBDIR += p5-OpenCA-CRR SUBDIR += p5-OpenCA-OpenSSL SUBDIR += p5-OpenCA-PKCS7 SUBDIR += p5-OpenCA-REQ SUBDIR += p5-OpenCA-X509 SUBDIR += p5-PBKDF2-Tiny SUBDIR += p5-PGP SUBDIR += p5-PGP-Sign SUBDIR += p5-POE-Component-SSLify SUBDIR += p5-POE-Filter-SSL SUBDIR += p5-Parse-Snort SUBDIR += p5-PerlCryptLib SUBDIR += p5-Protocol-ACME SUBDIR += p5-SAVI-Perl SUBDIR += p5-SHA SUBDIR += p5-Safe-Hole SUBDIR += p5-Session-Token SUBDIR += p5-Snort-Rule SUBDIR += p5-String-MkPasswd SUBDIR += p5-Sudo SUBDIR += p5-Text-Password-Pronounceable SUBDIR += p5-Tie-EncryptedHash SUBDIR += p5-Tree-Authz SUBDIR += p5-URN-OASIS-SAML2 SUBDIR += p5-Unix-Passwd-File SUBDIR += p5-Unix-setuid SUBDIR += p5-Yahoo-BBAuth SUBDIR += p5-dicewaregen SUBDIR += p5-openxpki SUBDIR += p5-openxpki-i18n SUBDIR += p5-plog SUBDIR += palisade SUBDIR += pam-modules SUBDIR += pam-mysql SUBDIR += pam-pgsql SUBDIR += pam_google_authenticator SUBDIR += pam_helper SUBDIR += pam_jail SUBDIR += pam_kde SUBDIR += pam_krb5 SUBDIR += pam_krb5-rh SUBDIR += pam_ldap SUBDIR += pam_mkhomedir SUBDIR += pam_ocra SUBDIR += pam_p11 SUBDIR += pam_pkcs11 SUBDIR += pam_pwdfile SUBDIR += pam_require SUBDIR += pam_script SUBDIR += pam_search_list SUBDIR += pam_ssh_agent_auth SUBDIR += pam_yubico SUBDIR += pamtester SUBDIR += paperkey SUBDIR += passh SUBDIR += passivedns SUBDIR += pbc SUBDIR += pcsc-tools SUBDIR += pdfcrack SUBDIR += pear-Auth SUBDIR += pear-Auth_HTTP SUBDIR += pear-Auth_PrefManager SUBDIR += pear-Auth_SASL SUBDIR += pear-Auth_SASL2 SUBDIR += pear-Crypt_Blowfish SUBDIR += pear-Crypt_CBC SUBDIR += pear-Crypt_CHAP SUBDIR += pear-Crypt_DiffieHellman SUBDIR += pear-Crypt_GPG SUBDIR += pear-Crypt_HMAC2 SUBDIR += pear-Crypt_MicroID SUBDIR += pear-Crypt_RC4 SUBDIR += pear-Crypt_RSA SUBDIR += pear-Crypt_XXTEA SUBDIR += pear-File_HtAccess SUBDIR += pear-File_Passwd SUBDIR += pear-File_SMBPasswd SUBDIR += pear-HTML_Crypt SUBDIR += pear-Horde_Auth SUBDIR += pear-Horde_Crypt SUBDIR += pear-Horde_Crypt_Blowfish SUBDIR += pear-Horde_Group SUBDIR += pear-Horde_Oauth SUBDIR += pear-Horde_Perms SUBDIR += pear-Horde_Secret SUBDIR += pear-Horde_Share SUBDIR += pear-LiveUser SUBDIR += pear-LiveUser_Admin SUBDIR += pear-Net_Portscan SUBDIR += pear-Text_Password SUBDIR += pecl-crypto SUBDIR += pecl-gnupg SUBDIR += pecl-krb5 SUBDIR += pecl-libsodium SUBDIR += pecl-mcrypt SUBDIR += pecl-pam SUBDIR += pecl-pkcs11 SUBDIR += pecl-scrypt SUBDIR += pecl-ssh2 SUBDIR += peda SUBDIR += pev SUBDIR += pgpdump SUBDIR += pgpgpg SUBDIR += pgpin SUBDIR += php74-filter SUBDIR += php74-openssl SUBDIR += php74-sodium SUBDIR += php80-filter SUBDIR += php80-sodium SUBDIR += php81-filter SUBDIR += php81-sodium SUBDIR += php82-filter SUBDIR += php82-sodium SUBDIR += picocrypt SUBDIR += picosha2 SUBDIR += pidgin-encryption SUBDIR += pidgin-otr SUBDIR += pinentry SUBDIR += pinentry-curses SUBDIR += pinentry-efl SUBDIR += pinentry-fltk SUBDIR += pinentry-gnome SUBDIR += pinentry-gtk2 SUBDIR += pinentry-qt5 SUBDIR += pinentry-tty SUBDIR += pixiewps SUBDIR += pkcrack SUBDIR += pkcs11-dump SUBDIR += pkcs11-gateway SUBDIR += pkcs11-helper SUBDIR += pkcs11-tools SUBDIR += pkesh SUBDIR += pks SUBDIR += plasma5-kscreenlocker SUBDIR += plasma5-ksshaskpass SUBDIR += plasma5-kwallet-pam SUBDIR += please SUBDIR += poly1305aes SUBDIR += portsentry SUBDIR += proftpd-mod_clamav SUBDIR += proxycheck SUBDIR += proxytunnel SUBDIR += pssh SUBDIR += pulledpork SUBDIR += pure-sfv SUBDIR += putty SUBDIR += putty-nogtk SUBDIR += pvk SUBDIR += pwauth SUBDIR += pwman SUBDIR += pwned-check SUBDIR += py-RestrictedPython SUBDIR += py-SecretStorage SUBDIR += py-YubiOTP SUBDIR += py-acme SUBDIR += py-acme-tiny SUBDIR += py-ailment SUBDIR += py-angr SUBDIR += py-argon2-cffi SUBDIR += py-argon2-cffi-bindings SUBDIR += py-artifacts SUBDIR += py-asyncssh SUBDIR += py-authlib SUBDIR += py-azure-keyvault-certificates SUBDIR += py-azure-keyvault-keys SUBDIR += py-azure-keyvault-secrets SUBDIR += py-base58 SUBDIR += py-bcrypt SUBDIR += py-bitbox02 SUBDIR += py-btchip-python SUBDIR += py-cerealizer SUBDIR += py-cert-human SUBDIR += py-certbot SUBDIR += py-certbot-apache SUBDIR += py-certbot-dns-cloudflare SUBDIR += py-certbot-dns-cloudxns SUBDIR += py-certbot-dns-cpanel SUBDIR += py-certbot-dns-digitalocean SUBDIR += py-certbot-dns-dnsimple SUBDIR += py-certbot-dns-dnsmadeeasy SUBDIR += py-certbot-dns-gandi SUBDIR += py-certbot-dns-gehirn SUBDIR += py-certbot-dns-google SUBDIR += py-certbot-dns-linode SUBDIR += py-certbot-dns-luadns SUBDIR += py-certbot-dns-nsone SUBDIR += py-certbot-dns-ovh SUBDIR += py-certbot-dns-powerdns SUBDIR += py-certbot-dns-rfc2136 SUBDIR += py-certbot-dns-route53 SUBDIR += py-certbot-dns-sakuracloud SUBDIR += py-certbot-nginx SUBDIR += py-certifi SUBDIR += py-certstream SUBDIR += py-ckcc-protocol SUBDIR += py-coincurve SUBDIR += py-cpe SUBDIR += py-cryptography SUBDIR += py-cryptography-vectors SUBDIR += py-ctypescrypto SUBDIR += py-cybox SUBDIR += py-dfdatetime SUBDIR += py-dfvfs SUBDIR += py-dfwinreg SUBDIR += py-django-auth-kerberos SUBDIR += py-docker-pycreds SUBDIR += py-ecdsa SUBDIR += py-ed25519ll SUBDIR += py-exscript SUBDIR += py-fail2ban SUBDIR += py-fido2 SUBDIR += py-first-server SUBDIR += py-flask-httpauth SUBDIR += py-flask-kerberos SUBDIR += py-flask-saml SUBDIR += py-gixy SUBDIR += py-gnupg SUBDIR += py-gnutls SUBDIR += py-google-auth SUBDIR += py-google-auth-httplib2 SUBDIR += py-google-auth-oauthlib SUBDIR += py-gpgme SUBDIR += py-gpsoauth SUBDIR += py-gssapi SUBDIR += py-gvm-tools SUBDIR += py-hkdf SUBDIR += py-htpasswd SUBDIR += py-itsdangerous SUBDIR += py-josepy SUBDIR += py-keepkey SUBDIR += py-kerberos SUBDIR += py-keyring SUBDIR += py-keyrings.alt SUBDIR += py-krb5 SUBDIR += py-libnacl SUBDIR += py-m2crypto SUBDIR += py-maec SUBDIR += py-merkletools SUBDIR += py-mixbox SUBDIR += py-mnemonic SUBDIR += py-msoffcrypto-tool SUBDIR += py-muacrypt SUBDIR += py-nassl SUBDIR += py-netbox-secretstore SUBDIR += py-netmiko SUBDIR += py-noiseprotocol SUBDIR += py-notus-scanner SUBDIR += py-ntlm-auth SUBDIR += py-oauth2client SUBDIR += py-oauthlib SUBDIR += py-onlykey SUBDIR += py-openssl SUBDIR += py-oscrypto SUBDIR += py-ospd-openvas SUBDIR += py-paramiko SUBDIR += py-pass-audit SUBDIR += py-pass-git-helper SUBDIR += py-passlib SUBDIR += py-pbkdf2 SUBDIR += py-pgpdump SUBDIR += py-pgpy SUBDIR += py-plaso SUBDIR += py-potr SUBDIR += py-pwntools SUBDIR += py-pyaes SUBDIR += py-pyaff4 SUBDIR += py-pyaxo SUBDIR += py-pyblake2 SUBDIR += py-pyclamd SUBDIR += py-pycrypto SUBDIR += py-pycryptodome SUBDIR += py-pycryptodome-test-vectors SUBDIR += py-pycryptodomex SUBDIR += py-pyelliptic SUBDIR += py-pyhanko-certvalidator SUBDIR += py-pylibacl SUBDIR += py-pymacaroons SUBDIR += py-pynacl SUBDIR += py-pyotp SUBDIR += py-pyotp2289 SUBDIR += py-pysaml2 SUBDIR += py-pysaml24 SUBDIR += py-pysaml26 SUBDIR += py-pyscard SUBDIR += py-pysha3 SUBDIR += py-pysodium SUBDIR += py-pyspnego SUBDIR += py-python-axolotl SUBDIR += py-python-axolotl-curve25519 SUBDIR += py-python-gnupg SUBDIR += py-python-gvm SUBDIR += py-python-jose SUBDIR += py-python-nss SUBDIR += py-python-openid SUBDIR += py-python-pam SUBDIR += py-python-pkcs11 SUBDIR += py-python-registry SUBDIR += py-python3-openid SUBDIR += py-python3-saml SUBDIR += py-pyvex SUBDIR += py-pywinrm SUBDIR += py-requests-credssp SUBDIR += py-requests-kerberos SUBDIR += py-ropgadget SUBDIR += py-ropper SUBDIR += py-rsa SUBDIR += py-safe SUBDIR += py-scp SUBDIR += py-scramp SUBDIR += py-scrypt SUBDIR += py-secure SUBDIR += py-securesystemslib SUBDIR += py-sequoia SUBDIR += py-service_identity SUBDIR += py-signedjson SUBDIR += py-social-auth-core SUBDIR += py-spake2 SUBDIR += py-ssh-audit SUBDIR += py-sshpubkeys SUBDIR += py-sslyze SUBDIR += py-stem SUBDIR += py-stix SUBDIR += py-stix2 SUBDIR += py-stix2-patterns SUBDIR += py-taxii2-client SUBDIR += py-tinyaes SUBDIR += py-tls-parser SUBDIR += py-tlslite SUBDIR += py-tlslite-ng SUBDIR += py-trezor SUBDIR += py-trustme SUBDIR += py-tuf SUBDIR += py-txtorcon SUBDIR += py-uhashring SUBDIR += py-vici SUBDIR += py-virustotal-api SUBDIR += py-volatility3 SUBDIR += py-vpn-slice SUBDIR += py-vulndb SUBDIR += py-webauthn SUBDIR += py-xkcdpass SUBDIR += py-xmlsec SUBDIR += py-yara SUBDIR += py-yara-python-dex SUBDIR += py-yubikey-manager SUBDIR += py-zkg SUBDIR += py-zope.password SUBDIR += py-zxcvbn SUBDIR += qtkeychain SUBDIR += quantis-kmod SUBDIR += racoon2 SUBDIR += ratproxy SUBDIR += rats SUBDIR += rcracki_mt SUBDIR += reop SUBDIR += rhash SUBDIR += rhonabwy SUBDIR += ridl SUBDIR += rifiuti2 SUBDIR += rkhunter SUBDIR += rndpassw SUBDIR += rnp SUBDIR += rotate SUBDIR += rubygem-acme-client SUBDIR += rubygem-aes_key_wrap SUBDIR += rubygem-airbrussh SUBDIR += rubygem-android_key_attestation SUBDIR += rubygem-attr_encrypted SUBDIR += rubygem-bcrypt SUBDIR += rubygem-bcrypt-ruby SUBDIR += rubygem-bcrypt_pbkdf SUBDIR += rubygem-cose SUBDIR += rubygem-declarative_policy SUBDIR += rubygem-devise-two-factor SUBDIR += rubygem-devise-two-factor-rails5 SUBDIR += rubygem-devise-two-factor-rails61 SUBDIR += rubygem-devise-two-factor-rails70 SUBDIR += rubygem-devise_pam_authenticatable2 SUBDIR += rubygem-digest SUBDIR += rubygem-digest-crc SUBDIR += rubygem-doorkeeper SUBDIR += rubygem-doorkeeper-openid_connect SUBDIR += rubygem-doorkeeper-rails5 SUBDIR += rubygem-doorkeeper-rails50 SUBDIR += rubygem-ed25519 SUBDIR += rubygem-ed2551912 SUBDIR += rubygem-encryptor SUBDIR += rubygem-ezcrypto SUBDIR += rubygem-googleauth SUBDIR += rubygem-gpgme SUBDIR += rubygem-gpgr SUBDIR += rubygem-gssapi SUBDIR += rubygem-haiti-hash SUBDIR += rubygem-hkdf SUBDIR += rubygem-hkdf0 SUBDIR += rubygem-hrr_rb_ssh SUBDIR += rubygem-hrr_rb_ssh-ed25519 SUBDIR += rubygem-lockbox SUBDIR += rubygem-metasploit-aggregator SUBDIR += rubygem-metasploit-concern SUBDIR += rubygem-metasploit-credential SUBDIR += rubygem-metasploit-model SUBDIR += rubygem-metasploit-payloads SUBDIR += rubygem-metasploit_data_models SUBDIR += rubygem-metasploit_payloads-mettle SUBDIR += rubygem-nessus_rest SUBDIR += rubygem-net-scp SUBDIR += rubygem-net-scp1 SUBDIR += rubygem-net-sftp SUBDIR += rubygem-net-sftp2 SUBDIR += rubygem-net-ssh SUBDIR += rubygem-net-ssh-gateway SUBDIR += rubygem-net-ssh-krb SUBDIR += rubygem-net-ssh-multi SUBDIR += rubygem-net-ssh5 SUBDIR += rubygem-net-ssh6 SUBDIR += rubygem-net-telnet SUBDIR += rubygem-nexpose SUBDIR += rubygem-nmap-parser SUBDIR += rubygem-omniauth SUBDIR += rubygem-omniauth-alicloud SUBDIR += rubygem-omniauth-atlassian-oauth2 SUBDIR += rubygem-omniauth-bitbucket SUBDIR += rubygem-omniauth-cas SUBDIR += rubygem-omniauth-cas3 SUBDIR += rubygem-omniauth-cas3-oauth2 SUBDIR += rubygem-omniauth-dingtalk-oauth2 SUBDIR += rubygem-omniauth-gitlab SUBDIR += rubygem-omniauth-jwt SUBDIR += rubygem-omniauth-multipassword SUBDIR += rubygem-omniauth-oauth2-generic SUBDIR += rubygem-omniauth-rails_csrf_protection SUBDIR += rubygem-omniauth-saml SUBDIR += rubygem-omniauth-shibboleth SUBDIR += rubygem-omniauth1 SUBDIR += rubygem-openssl SUBDIR += rubygem-openssl-ccm SUBDIR += rubygem-openssl-cmac SUBDIR += rubygem-openssl-signature_algorithm SUBDIR += rubygem-openssl2 SUBDIR += rubygem-openvas-omp SUBDIR += rubygem-origami SUBDIR += rubygem-pbkdf2-ruby SUBDIR += rubygem-pundit SUBDIR += rubygem-pyu-ruby-sasl SUBDIR += rubygem-rack-oauth2 SUBDIR += rubygem-razorback-scriptNugget SUBDIR += rubygem-rbnacl SUBDIR += rubygem-rbnacl-libsodium SUBDIR += rubygem-recog SUBDIR += rubygem-rex-arch SUBDIR += rubygem-rex-bin_tools SUBDIR += rubygem-rex-core SUBDIR += rubygem-rex-encoder SUBDIR += rubygem-rex-exploitation SUBDIR += rubygem-rex-java SUBDIR += rubygem-rex-mime SUBDIR += rubygem-rex-nop SUBDIR += rubygem-rex-ole SUBDIR += rubygem-rex-powershell SUBDIR += rubygem-rex-random_identifier SUBDIR += rubygem-rex-registry SUBDIR += rubygem-rex-rop_builder SUBDIR += rubygem-rex-socket SUBDIR += rubygem-rex-sslscan SUBDIR += rubygem-rex-struct2 SUBDIR += rubygem-rex-text SUBDIR += rubygem-rex-zip SUBDIR += rubygem-roauth SUBDIR += rubygem-rpam2 SUBDIR += rubygem-ruby-hmac SUBDIR += rubygem-ruby-rc4 SUBDIR += rubygem-ruby-saml SUBDIR += rubygem-safety_net_attestation SUBDIR += rubygem-scrypt SUBDIR += rubygem-securecompare SUBDIR += rubygem-securerandom SUBDIR += rubygem-signet SUBDIR += rubygem-six SUBDIR += rubygem-ssh_data SUBDIR += rubygem-sshkey SUBDIR += rubygem-sshkit SUBDIR += rubygem-sslshake SUBDIR += rubygem-ssrf_filter SUBDIR += rubygem-timfel-krb5 SUBDIR += rubygem-tpm-key_attestation SUBDIR += rubygem-twitter_oauth SUBDIR += rubygem-unix-crypt SUBDIR += rubygem-vault SUBDIR += rubygem-webauthn SUBDIR += rubygem-webpush SUBDIR += rustscan SUBDIR += s2n-tls SUBDIR += safesh SUBDIR += samhain SUBDIR += samhain-client SUBDIR += samhain-server SUBDIR += sancp SUBDIR += sasp SUBDIR += scanlogd SUBDIR += scrypt SUBDIR += seahorse SUBDIR += seal SUBDIR += seccure SUBDIR += seclists SUBDIR += secpanel SUBDIR += sectok SUBDIR += secure_delete SUBDIR += sedutil SUBDIR += sequoia SUBDIR += setaudit SUBDIR += sha1collisiondetection SUBDIR += sha2wordlist + SUBDIR += shibboleth-idp SUBDIR += shibboleth-sp SUBDIR += sig2dot SUBDIR += signify SUBDIR += signing-party SUBDIR += silktools SUBDIR += sks SUBDIR += smurflog SUBDIR += sniffglue SUBDIR += snoopy SUBDIR += snort SUBDIR += snort-rep SUBDIR += snort2pfcd SUBDIR += snort3 SUBDIR += snortsam SUBDIR += snortsnarf SUBDIR += snowflake-tor SUBDIR += snuffleupagus SUBDIR += softether SUBDIR += softether-devel SUBDIR += softether5 SUBDIR += softhsm2 SUBDIR += solana SUBDIR += sops SUBDIR += spass SUBDIR += spass-qt5 SUBDIR += spectre-meltdown-checker SUBDIR += spm SUBDIR += sqlmap SUBDIR += sqlninja SUBDIR += srm SUBDIR += ssb SUBDIR += ssdeep SUBDIR += ssh-multiadd SUBDIR += ssh-tools SUBDIR += ssh-vault SUBDIR += sshguard SUBDIR += sshpass SUBDIR += ssl-admin SUBDIR += ssllabs-scan SUBDIR += sslproxy SUBDIR += sslscan SUBDIR += sslsplit SUBDIR += sssd SUBDIR += ssss SUBDIR += sst SUBDIR += starttls SUBDIR += steghide SUBDIR += stegify SUBDIR += step-certificates SUBDIR += step-cli SUBDIR += stoken SUBDIR += strongswan SUBDIR += stunnel SUBDIR += subversion-gnome-keyring SUBDIR += sudo SUBDIR += sudoscript SUBDIR += super SUBDIR += suricata SUBDIR += swatchdog SUBDIR += tailscale SUBDIR += tang SUBDIR += tclsasl SUBDIR += tcpcrypt SUBDIR += teleport SUBDIR += testssl.sh SUBDIR += tfhe SUBDIR += tfsec SUBDIR += theonionbox SUBDIR += tinc SUBDIR += tinc-devel SUBDIR += tinyca SUBDIR += tls-check SUBDIR += tor SUBDIR += tor-devel SUBDIR += totp-cli SUBDIR += tpm-quote-tools SUBDIR += tpm-tools SUBDIR += tpm2-abrmd SUBDIR += tpm2-tools SUBDIR += tpm2-tss SUBDIR += trezord SUBDIR += tripwire SUBDIR += trousers SUBDIR += tthsum SUBDIR += u2f-devd SUBDIR += uacme SUBDIR += ubuntu-keyring SUBDIR += unhide SUBDIR += unix-selfauth-helper SUBDIR += vanguards-tor SUBDIR += vault SUBDIR += vaultwarden SUBDIR += veracrypt SUBDIR += vigenere SUBDIR += vlock SUBDIR += vm-to-tor SUBDIR += vouch-proxy SUBDIR += vpnc SUBDIR += vuls SUBDIR += vuxml SUBDIR += vxquery SUBDIR += wapiti SUBDIR += wazuh-agent SUBDIR += wazuh-dashboard SUBDIR += wazuh-indexer SUBDIR += wazuh-manager SUBDIR += wazuh-server SUBDIR += webfwlog SUBDIR += weggli SUBDIR += whatweb SUBDIR += wipe SUBDIR += wolfssh SUBDIR += wolfssl SUBDIR += wpa_supplicant SUBDIR += wpa_supplicant-devel SUBDIR += wpa_supplicant29 SUBDIR += xca SUBDIR += xinetd SUBDIR += xml-security SUBDIR += xmlsec1 SUBDIR += xorsearch SUBDIR += xray-core SUBDIR += yafic SUBDIR += yapet SUBDIR += yara SUBDIR += yersinia SUBDIR += ykclient SUBDIR += ykpers SUBDIR += ylva SUBDIR += yubico-piv-tool SUBDIR += yubikey-agent SUBDIR += yubikey-manager-qt SUBDIR += yubikey-personalization-gui SUBDIR += yubioath-desktop SUBDIR += zaproxy SUBDIR += zeek SUBDIR += zeronet SUBDIR += zxid SUBDIR += zzuf .include diff --git a/security/shibboleth-idp/Makefile b/security/shibboleth-idp/Makefile new file mode 100644 index 000000000000..2c9a0034823f --- /dev/null +++ b/security/shibboleth-idp/Makefile @@ -0,0 +1,65 @@ +PORTNAME= shibboleth +PORTVERSION= 4.2.1 +CATEGORIES= security www +MASTER_SITES= http://shibboleth.net/downloads/identity-provider/${PORTVERSION}/ \ + http://shibboleth.net/downloads/identity-provider/latest4/${PORTVERSION}/ \ + http://shibboleth.net/downloads/identity-provider/archive/${PORTVERSION}/ \ + https://repo1.maven.org/maven2/ch/qos/logback/logback-core/${LOGBACKVER}/:logback_core \ + https://repo1.maven.org/maven2/ch/qos/logback/logback-classic/${LOGBACKVER}/:logback_classic +PKGNAMESUFFIX= -idp +DISTFILES= shibboleth-identity-provider-${PORTVERSION}.tar.gz \ + logback-classic-${LOGBACKVER}.jar:logback_classic \ + logback-core-${LOGBACKVER}.jar:logback_core +EXTRACT_ONLY= shibboleth-identity-provider-${PORTVERSION}.tar.gz + +MAINTAINER= zi@FreeBSD.org +COMMENT= Shibboleth Identity Provider (Internet2) +WWW= http://shibboleth.internet2.edu/ + +LICENSE= APACHE20 + +BUILD_DEPENDS= jetty10>=0:www/jetty10 +RUN_DEPENDS= bash:shells/bash \ + jetty10>=0:www/jetty10 + +USE_RC_SUBR= shibboleth-idp +CPE_VENDOR= shibboleth +WRKSRC= ${WRKDIR}/shibboleth-identity-provider-${PORTVERSION} + +NO_ARCH= yes +NO_BUILD= yes + +LOGBACKVER= 1.4.0 +SHIBUSER= shibd +SHIBGROUP= shibd +LOGDIR= /var/log/${PORTNAME} +RUNDIR= /var/run/${PORTNAME} +USERS= ${SHIBUSER} +GROUPS= ${SHIBGROUP} + +SUB_FILES= shibboleth + +SUB_LIST+= SHIBUSER=${SHIBUSER} SHIBGROUP=${SHIBGROUP} \ + RUNDIR=${RUNDIR} LOGDIR=${LOGDIR} +PLIST_SUB+= SHIBUSER=${SHIBUSER} SHIBGROUP=${SHIBGROUP} \ + RUNDIR=${RUNDIR} LOGDIR=${LOGDIR} LOGBACKVER=${LOGBACKVER} + +do-install: + @${MKDIR} ${STAGEDIR}${DATADIR} ${STAGEDIR}${ETCDIR} + @${MKDIR} ${STAGEDIR}${LOGDIR} ${STAGEDIR}${RUNDIR} + @${MKDIR} ${STAGEDIR}${WWWDIR}/lib/logging + @${MKDIR} ${STAGEDIR}${EXAMPLESDIR} +.for dir in conf credentials etc modules resources start.d webapps/ROOT + @${MKDIR} ${STAGEDIR}${WWWDIR}/${dir} +.endfor + (cd ${WRKSRC} && ${COPYTREE_SHARE} . ${STAGEDIR}${DATADIR}) + (cd ${FILESDIR}/jetty-base && ${COPYTREE_SHARE} . ${STAGEDIR}${EXAMPLESDIR}) + @${FIND} ${STAGEDIR}${DATADIR} -type f -name '*.sh' -exec ${CHMOD} +x {} \; +.for jar in logback-classic-${LOGBACKVER}.jar logback-core-${LOGBACKVER}.jar + ${INSTALL_DATA} ${DISTDIR}/${jar} ${STAGEDIR}${WWWDIR}/lib/logging +.endfor + ${INSTALL_DATA} ${WRKDIR}/shibboleth ${STAGEDIR}${ETCDIR}/shibboleth-idp + ${INSTALL_DATA} ${FILESDIR}/index.html ${STAGEDIR}${EXAMPLESDIR}/index.html + ${INSTALL_SCRIPT} ${FILESDIR}/shibboleth-idp.sh ${STAGEDIR}${PREFIX}/sbin + +.include diff --git a/security/shibboleth-idp/distinfo b/security/shibboleth-idp/distinfo new file mode 100644 index 000000000000..2d19c4209bac --- /dev/null +++ b/security/shibboleth-idp/distinfo @@ -0,0 +1,7 @@ +TIMESTAMP = 1666726432 +SHA256 (shibboleth-identity-provider-4.2.1.tar.gz) = fa5e46d160f6b1bc50326c1a31627a05b5d0847b8f620d7f4c0251999b806474 +SIZE (shibboleth-identity-provider-4.2.1.tar.gz) = 55960112 +SHA256 (logback-classic-1.4.0.jar) = 9ce4cfee4834195753b5be5016ded641e8456d9e82995821838dc662e866e212 +SIZE (logback-classic-1.4.0.jar) = 262118 +SHA256 (logback-core-1.4.0.jar) = 14e09a7896bee6ef2e005b48fc5560fe2299a57a826bc4c1f1c6d43002f0512c +SIZE (logback-core-1.4.0.jar) = 559203 diff --git a/security/shibboleth-idp/files/index.html b/security/shibboleth-idp/files/index.html new file mode 100644 index 000000000000..7f517dede1eb --- /dev/null +++ b/security/shibboleth-idp/files/index.html @@ -0,0 +1,8 @@ + + + Shibboleth + + +

Shibboleth

+ + diff --git a/security/shibboleth-idp/files/jetty-base/etc/jetty-requestlog.xml b/security/shibboleth-idp/files/jetty-base/etc/jetty-requestlog.xml new file mode 100644 index 000000000000..660f7b368199 --- /dev/null +++ b/security/shibboleth-idp/files/jetty-base/etc/jetty-requestlog.xml @@ -0,0 +1,30 @@ + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + diff --git a/security/shibboleth-idp/files/jetty-base/modules/idp-logging.mod b/security/shibboleth-idp/files/jetty-base/modules/idp-logging.mod new file mode 100644 index 000000000000..dccc34ae12b7 --- /dev/null +++ b/security/shibboleth-idp/files/jetty-base/modules/idp-logging.mod @@ -0,0 +1,9 @@ +[description] +Shibboleth IdP Logging + +[depend] +console-capture +logback-access + +[files] +/var/log/shibboleth/ diff --git a/security/shibboleth-idp/files/jetty-base/modules/idp.mod b/security/shibboleth-idp/files/jetty-base/modules/idp.mod new file mode 100644 index 000000000000..57a601105222 --- /dev/null +++ b/security/shibboleth-idp/files/jetty-base/modules/idp.mod @@ -0,0 +1,18 @@ +[description] +Shibboleth IdP + +[depend] +annotations +deploy +ext +#https +jsp +jstl +plus +resources +server +servlets +#ssl + +[files] +tmp/ diff --git a/security/shibboleth-idp/files/jetty-base/resources/logback-access.xml b/security/shibboleth-idp/files/jetty-base/resources/logback-access.xml new file mode 100644 index 000000000000..cec9236337fa --- /dev/null +++ b/security/shibboleth-idp/files/jetty-base/resources/logback-access.xml @@ -0,0 +1,13 @@ + + + + /var/log/shibboleth/access.log + + /var/log/shibboleth/access-%d{yyyy-MM-dd}.log.gz + + + combined + + + + diff --git a/security/shibboleth-idp/files/jetty-base/resources/logback.xml b/security/shibboleth-idp/files/jetty-base/resources/logback.xml new file mode 100644 index 000000000000..9a530677c4a9 --- /dev/null +++ b/security/shibboleth-idp/files/jetty-base/resources/logback.xml @@ -0,0 +1,18 @@ + + + + /var/log/shibboleth/jetty.log + + /var/log/shibboleth/jetty-%d{yyyy-MM-dd}.log.gz + + + UTF-8 + %date{ISO8601} - %level [%logger:%line] - %msg%n + + + + + + + + diff --git a/security/shibboleth-idp/files/jetty-base/start.d/http.ini b/security/shibboleth-idp/files/jetty-base/start.d/http.ini new file mode 100644 index 000000000000..fd91753eb783 --- /dev/null +++ b/security/shibboleth-idp/files/jetty-base/start.d/http.ini @@ -0,0 +1,14 @@ +# --------------------------------------- +# Module: http +# Shibboleth IdP +# --------------------------------------- + +--module=http +--module=http-forwarded + +# Allows use of default IdP command line tools. +jetty.http.host=127.0.0.1 +jetty.http.port=8080 + +# Hide server version +jetty.httpConfig.sendServerVersion=false diff --git a/security/shibboleth-idp/files/jetty-base/start.d/idp.ini b/security/shibboleth-idp/files/jetty-base/start.d/idp.ini new file mode 100644 index 000000000000..e87aa186019d --- /dev/null +++ b/security/shibboleth-idp/files/jetty-base/start.d/idp.ini @@ -0,0 +1,35 @@ +# --------------------------------------- +# Module: idp +# Shibboleth IdP +# --------------------------------------- +--module=logging-logback +--module=idp + +## Keystore file path (relative to $jetty.base) +jetty.sslContext.keyStorePath=credentials/idp-userfacing.p12 +## Truststore file path (relative to $jetty.base) +jetty.sslContext.trustStorePath=credentials/idp-userfacing.p12 + +## Keystore type +jetty.sslContext.keyStoreType=PKCS12 +## Truststore type and provider +jetty.sslContext.trustStoreType=PKCS12 + +## Keystore password +jetty.sslContext.keyStorePassword=%%KEYSTORE%% +## Truststore password +jetty.sslContext.trustStorePassword=%%KEYSTORE%% +## KeyManager password +jetty.sslContext.keyManagerPassword=%%KEYSTORE%% + +## Deny SSL renegotiation +jetty.sslContext.renegotiationAllowed=false + +## Connector host/address to bind to +jetty.ssl.host=127.0.0.1 + +## Connector port to listen on +jetty.ssl.port=443 + +# logging +etc/jetty-requestlog.xml diff --git a/security/shibboleth-idp/files/jetty-base/start.d/start.ini b/security/shibboleth-idp/files/jetty-base/start.d/start.ini new file mode 100644 index 000000000000..f83bcf36389e --- /dev/null +++ b/security/shibboleth-idp/files/jetty-base/start.d/start.ini @@ -0,0 +1,24 @@ +# Any other required Jetty modules... + +# Allows setting Java system properties (-Dname=value) +# and JVM flags (-X, -XX) in this file +# NOTE: spawns child Java process +--exec + +# Uncomment if IdP is installed somewhere other than /opt/shibboleth-idp +-Didp.home=/usr/local/www/shibboleth + +# Maximum amount of memory that Jetty may use, at least 1.5G is recommended +# for handling larger (> 25M) metadata files but you will need to test on +# your particular metadata configuration. If MDQ metadata on demand is used, +# requirements may be much lower. +-Xmx1500m + +# Prevent blocking for entropy. +-Djava.security.egd=file:/dev/urandom + +# Set Java tmp location +-Djava.io.tmpdir=/tmp + +# Where to put logs +-Didp.logfiles=/var/log/shibboleth diff --git a/security/shibboleth-idp/files/jetty-base/webapps/idp.xml b/security/shibboleth-idp/files/jetty-base/webapps/idp.xml new file mode 100644 index 000000000000..f5ba928e0b73 --- /dev/null +++ b/security/shibboleth-idp/files/jetty-base/webapps/idp.xml @@ -0,0 +1,12 @@ + + + + + + + + + false + false + true + diff --git a/security/shibboleth-idp/files/jetty-base/webapps/static.xml b/security/shibboleth-idp/files/jetty-base/webapps/static.xml new file mode 100644 index 000000000000..3c53036abb35 --- /dev/null +++ b/security/shibboleth-idp/files/jetty-base/webapps/static.xml @@ -0,0 +1,16 @@ + + + + + + + / + + + + / + + false + + + diff --git a/security/shibboleth-idp/files/pkg-message.in b/security/shibboleth-idp/files/pkg-message.in new file mode 100644 index 000000000000..156826d76bcf --- /dev/null +++ b/security/shibboleth-idp/files/pkg-message.in @@ -0,0 +1,42 @@ +[ +{ type: install + message: </webapps/jetty.war +# +# JETTY_BASE +# Where your Jetty base directory is. If not set, then the currently +# directory is checked, otherwise the value from +# $JETTY_HOME will be used. +# +# JETTY_RUN +# Where the $NAME.pid file should be stored. It defaults to the +# first available of /var/run, /usr/var/run, JETTY_BASE and /tmp +# if not set. +# +# JETTY_PID +# The Jetty PID file, defaults to $JETTY_RUN/$NAME.pid +# +# JETTY_ARGS +# The default arguments to pass to jetty. +# For example +# JETTY_ARGS=jetty.http.port=8080 jetty.ssl.port=8443 +# +# JETTY_USER +# if set, then used as a username to run the server as +# +# JETTY_SHELL +# If set, then used as the shell by su when starting the server. Will have +# no effect if start-stop-daemon exists. Useful when JETTY_USER does not +# have shell access, e.g. /bin/false +# +# JETTY_START_TIMEOUT +# Time spent waiting to see if startup was successful/failed. Defaults to 60 seconds +# + +usage() +{ + echo "Usage: ${0##*/} [-d] {start|stop|run|restart|check|supervise} [ CONFIGS ... ] " + exit 1 +} + +[ $# -gt 0 ] || usage + + +################################################## +# Some utility functions +################################################## +findDirectory() +{ + local L OP=$1 + shift + for L in "$@"; do + [ "$OP" "$L" ] || continue + printf %s "$L" + break + done +} + +running() +{ + if [ -f "$1" ] + then + local PID=$(cat "$1" 2>/dev/null) || return 1 + kill -0 "$PID" 2>/dev/null + return + fi + rm -f "$1" + return 1 +} + +started() +{ + # wait for 60s to see "STARTED" in PID file, needs jetty-started.xml as argument + for ((T = 0; T < $(($3 / 4)); T++)) + do + sleep 4 + [ -z "$(tail -1 $1 | grep STARTED 2>/dev/null)" ] || return 0 + [ -z "$(tail -1 $1 | grep STOPPED 2>/dev/null)" ] || return 1 + [ -z "$(tail -1 $1 | grep FAILED 2>/dev/null)" ] || return 1 + local PID=$(cat "$2" 2>/dev/null) || return 1 + kill -0 "$PID" 2>/dev/null || return 1 + echo -n ". " + done + + return 1; +} + + +readConfig() +{ + (( DEBUG )) && echo "Reading $1.." + source "$1" +} + +dumpEnv() +{ + echo "JAVA = $JAVA" + echo "JAVA_OPTIONS = ${JAVA_OPTIONS[*]}" + echo "JETTY_HOME = $JETTY_HOME" + echo "JETTY_BASE = $JETTY_BASE" + echo "START_D = $START_D" + echo "START_INI = $START_INI" + echo "JETTY_START = $JETTY_START" + echo "JETTY_CONF = $JETTY_CONF" + echo "JETTY_ARGS = ${JETTY_ARGS[*]}" + echo "JETTY_RUN = $JETTY_RUN" + echo "JETTY_PID = $JETTY_PID" + echo "JETTY_START_LOG = $JETTY_START_LOG" + echo "JETTY_STATE = $JETTY_STATE" + echo "JETTY_START_TIMEOUT = $JETTY_START_TIMEOUT" + echo "RUN_CMD = ${RUN_CMD[*]}" +} + + + +################################################## +# Get the action & configs +################################################## +CONFIGS=() +NO_START=0 +DEBUG=0 + +while [[ $1 = -* ]]; do + case $1 in + -d) DEBUG=1 ;; + esac + shift +done +ACTION=$1 +shift + +################################################## +# Read any configuration files +################################################## +ETC=/etc +if [ $UID != 0 ] +then + ETC=$HOME/etc +fi + +for CONFIG in {/etc,~/etc}/default/${NAME}{,9} $HOME/.${NAME}rc /usr/local/etc/shibboleth/${NAME}{,9}; do + if [ -f "$CONFIG" ] ; then + readConfig "$CONFIG" + fi +done + + +################################################## +# Set tmp if not already set. +################################################## +TMPDIR=${TMPDIR:-/tmp} + +################################################## +# Jetty's hallmark +################################################## +JETTY_INSTALL_TRACE_FILE="start.jar" + + +################################################## +# Try to determine JETTY_HOME if not set +################################################## +if [ -z "$JETTY_HOME" ] +then + JETTY_SH=$0 + case "$JETTY_SH" in + /*) JETTY_HOME=${JETTY_SH%/*/*} ;; + ./*/*) JETTY_HOME=${JETTY_SH%/*/*} ;; + ./*) JETTY_HOME=.. ;; + */*/*) JETTY_HOME=./${JETTY_SH%/*/*} ;; + */*) JETTY_HOME=. ;; + *) JETTY_HOME=.. ;; + esac + + if [ ! -f "$JETTY_HOME/$JETTY_INSTALL_TRACE_FILE" ] + then + JETTY_HOME= + fi +fi + +################################################## +# No JETTY_HOME yet? We're out of luck! +################################################## +if [ -z "$JETTY_HOME" ]; then + echo "** ERROR: JETTY_HOME not set, you need to set it or install in a standard location" + exit 1 +fi + +RUN_DIR=$(pwd) +cd "$JETTY_HOME" +JETTY_HOME=$(pwd) + +################################################## +# Set JETTY_BASE +################################################## +export JETTY_BASE +if [ -z "$JETTY_BASE" ]; then + if [ -d "$RUN_DIR/start.d" -o -f "$RUN_DIR/start.ini" ]; then + JETTY_BASE=$RUN_DIR + else + JETTY_BASE=$JETTY_HOME + fi +fi +cd "$JETTY_BASE" +JETTY_BASE=$(pwd) + +##################################################### +# Check that jetty is where we think it is +##################################################### +if [ ! -r "$JETTY_HOME/$JETTY_INSTALL_TRACE_FILE" ] +then + echo "** ERROR: Oops! Jetty doesn't appear to be installed in $JETTY_HOME" + echo "** ERROR: $JETTY_HOME/$JETTY_INSTALL_TRACE_FILE is not readable!" + exit 1 +fi + +################################################## +# Try to find this script's configuration file, +# but only if no configurations were given on the +# command line. +################################################## +if [ -z "$JETTY_CONF" ] +then + if [ -f $ETC/${NAME}.conf ] + then + JETTY_CONF=$ETC/${NAME}.conf + elif [ -f "$JETTY_BASE/etc/jetty.conf" ] + then + JETTY_CONF=$JETTY_BASE/etc/jetty.conf + elif [ -f "$JETTY_HOME/etc/jetty.conf" ] + then + JETTY_CONF=$JETTY_HOME/etc/jetty.conf + fi +fi + +##################################################### +# Find a location for the pid file +##################################################### +if [ -z "$JETTY_RUN" ] +then + JETTY_RUN=$(findDirectory -w /var/run /usr/var/run $JETTY_BASE /tmp)/jetty + [ -d "$JETTY_RUN" ] || mkdir $JETTY_RUN +fi + +##################################################### +# define start log location +##################################################### +if [ -z "$JETTY_START_LOG" ] +then + JETTY_START_LOG="$JETTY_RUN/$NAME-start.log" +fi + +##################################################### +# Find a pid and state file +##################################################### +if [ -z "$JETTY_PID" ] +then + JETTY_PID="$JETTY_RUN/${NAME}.pid" +fi + +if [ -z "$JETTY_STATE" ] +then + JETTY_STATE=$JETTY_BASE/${NAME}.state +fi + +case "`uname`" in +CYGWIN*) JETTY_STATE="`cygpath -w $JETTY_STATE`";; +esac + + +JETTY_ARGS=(${JETTY_ARGS[*]} "jetty.state=$JETTY_STATE") + +################################################## +# Get the list of config.xml files from jetty.conf +################################################## +if [ -f "$JETTY_CONF" ] && [ -r "$JETTY_CONF" ] +then + while read -r CONF + do + if expr "$CONF" : '#' >/dev/null ; then + continue + fi + + if [ -d "$CONF" ] + then + # assume it's a directory with configure.xml files + # for example: /etc/jetty.d/ + # sort the files before adding them to the list of JETTY_ARGS + for XMLFILE in "$CONF/"*.xml + do + if [ -r "$XMLFILE" ] && [ -f "$XMLFILE" ] + then + JETTY_ARGS=(${JETTY_ARGS[*]} "$XMLFILE") + else + echo "** WARNING: Cannot read '$XMLFILE' specified in '$JETTY_CONF'" + fi + done + else + # assume it's a command line parameter (let start.jar deal with its validity) + JETTY_ARGS=(${JETTY_ARGS[*]} "$CONF") + fi + done < "$JETTY_CONF" +fi + +################################################## +# Setup JAVA if unset +################################################## +if [ -z "$JAVA" ] +then + JAVA=$(which java) +fi + +if [ -z "$JAVA" ] +then + echo "Cannot find a Java JDK. Please set either set JAVA or put java (>=1.5) in your PATH." >&2 + exit 1 +fi + +##################################################### +# See if Deprecated JETTY_LOGS is defined +##################################################### +if [ "$JETTY_LOGS" ] +then + echo "** WARNING: JETTY_LOGS is Deprecated. Please configure logging within the jetty base." >&2 +fi + +##################################################### +# Set STARTED timeout +##################################################### +if [ -z "$JETTY_START_TIMEOUT" ] +then + JETTY_START_TIMEOUT=60 +fi + +##################################################### +# Are we running on Windows? Could be, with Cygwin/NT. +##################################################### +case "`uname`" in +CYGWIN*) PATH_SEPARATOR=";";; +*) PATH_SEPARATOR=":";; +esac + + +##################################################### +# Add jetty properties to Java VM options. +##################################################### + +case "`uname`" in +CYGWIN*) +JETTY_HOME="`cygpath -w $JETTY_HOME`" +JETTY_BASE="`cygpath -w $JETTY_BASE`" +TMPDIR="`cygpath -w $TMPDIR`" +;; +esac + +BASE_JETTY_SYS_PROPS=$(echo -ne "-Djetty.home=$JETTY_HOME" "-Djetty.base=$JETTY_BASE" "-Djava.io.tmpdir=$TMPDIR") +JETTY_SYS_PROPS=(${JETTY_SYS_PROPS[*]} $BASE_JETTY_SYS_PROPS) + +##################################################### +# This is how the Jetty server will be started +##################################################### + +JETTY_START=$JETTY_HOME/start.jar +START_INI=$JETTY_BASE/start.ini +START_D=$JETTY_BASE/start.d +if [ ! -f "$START_INI" -a ! -d "$START_D" ] +then + echo "Cannot find a start.ini file or a start.d directory in your JETTY_BASE directory: $JETTY_BASE" >&2 + exit 1 +fi + +case "`uname`" in +CYGWIN*) JETTY_START="`cygpath -w $JETTY_START`";; +esac + +RUN_ARGS=$("$JAVA" -jar "$JETTY_START" --dry-run=opts,path,main,args ${JETTY_ARGS[*]} ${JAVA_OPTIONS[*]}) +RUN_CMD=("$JAVA" $JETTY_SYS_PROPS ${RUN_ARGS[@]}) + +##################################################### +# Comment these out after you're happy with what +# the script is doing. +##################################################### +if (( DEBUG )) +then + dumpEnv +fi + +################################################## +# Do the action +################################################## +case "$ACTION" in + start) + echo -n "Starting Jetty: " + + if (( NO_START )); then + echo "Not starting ${NAME} - NO_START=1"; + exit + fi + + if [ $UID -eq 0 ] && type start-stop-daemon > /dev/null 2>&1 + then + unset CH_USER + if [ -n "$JETTY_USER" ] + then + CH_USER="--chuid $JETTY_USER" + fi + + start-stop-daemon --start $CH_USER \ + --pidfile "$JETTY_PID" \ + --chdir "$JETTY_BASE" \ + --background \ + --make-pidfile \ + --startas "$JAVA" \ + -- ${RUN_ARGS[@]} start-log-file="$JETTY_START_LOG" + + else + + if running $JETTY_PID + then + echo "Already Running $(cat $JETTY_PID)!" + exit 1 + fi + + if [ -n "$JETTY_USER" ] && [ `whoami` != "$JETTY_USER" ] + then + unset SU_SHELL + if [ "$JETTY_SHELL" ] + then + SU_SHELL="-s $JETTY_SHELL" + fi + + touch "$JETTY_PID" + chown "$JETTY_USER" "$JETTY_PID" + # FIXME: Broken solution: wordsplitting, pathname expansion, arbitrary command execution, etc. + su - "$JETTY_USER" $SU_SHELL -c " + cd \"$JETTY_BASE\" + exec ${RUN_CMD[*]} start-log-file=\"$JETTY_START_LOG\" > /dev/null & + disown \$! + echo \$! > \"$JETTY_PID\"" + else + "${RUN_CMD[@]}" > /dev/null & + disown $! + echo $! > "$JETTY_PID" + fi + + fi + + if expr "${JETTY_ARGS[*]}" : '.*jetty-started.xml.*' >/dev/null + then + if started "$JETTY_STATE" "$JETTY_PID" "$JETTY_START_TIMEOUT" + then + echo "OK `date`" + else + echo "FAILED `date`" + exit 1 + fi + else + echo "ok `date`" + fi + + ;; + + stop) + echo -n "Stopping Jetty: " + if [ $UID -eq 0 ] && type start-stop-daemon > /dev/null 2>&1; then + start-stop-daemon -K -p"$JETTY_PID" -d"$JETTY_HOME" -a "$JAVA" -s HUP + + TIMEOUT=30 + while running "$JETTY_PID"; do + if (( TIMEOUT-- == 0 )); then + start-stop-daemon -K -p"$JETTY_PID" -d"$JETTY_HOME" -a "$JAVA" -s KILL + fi + + sleep 1 + done + else + if [ ! -f "$JETTY_PID" ] ; then + echo "ERROR: no pid found at $JETTY_PID" + exit 1 + fi + + PID=$(cat "$JETTY_PID" 2>/dev/null) + if [ -z "$PID" ] ; then + echo "ERROR: no pid id found in $JETTY_PID" + exit 1 + fi + kill "$PID" 2>/dev/null + + TIMEOUT=30 + while running $JETTY_PID; do + if (( TIMEOUT-- == 0 )); then + kill -KILL "$PID" 2>/dev/null + fi + + sleep 1 + done + fi + + rm -f "$JETTY_PID" + rm -f "$JETTY_STATE" + echo OK + + ;; + + restart) + JETTY_SH=$0 + > "$JETTY_STATE" + if [ ! -f $JETTY_SH ]; then + if [ ! -f $JETTY_HOME/bin/jetty.sh ]; then + echo "$JETTY_HOME/bin/jetty.sh does not exist." + exit 1 + fi + JETTY_SH=$JETTY_HOME/bin/jetty.sh + fi + + "$JETTY_SH" stop "$@" + "$JETTY_SH" start "$@" + + ;; + + supervise) + # + # Under control of daemontools supervise monitor which + # handles restarts and shutdowns via the svc program. + # + exec "${RUN_CMD[@]}" + + ;; + + run|demo) + echo "Running Jetty: " + + if running "$JETTY_PID" + then + echo Already Running $(cat "$JETTY_PID")! + exit 1 + fi + + exec "${RUN_CMD[@]}" + ;; + + check|status) + if running "$JETTY_PID" + then + echo "Jetty running pid=$(< "$JETTY_PID")" + else + echo "Jetty NOT running" + fi + echo + dumpEnv + echo + + if running "$JETTY_PID" + then + exit 0 + fi + exit 1 + + ;; + + *) + usage + + ;; +esac + +exit 0 diff --git a/security/shibboleth-idp/files/shibboleth.in b/security/shibboleth-idp/files/shibboleth.in new file mode 100644 index 000000000000..e63c0b1c1b98 --- /dev/null +++ b/security/shibboleth-idp/files/shibboleth.in @@ -0,0 +1,64 @@ +# +# Sample Configuration File +# +# JAVA +# Command to invoke Java. If not set, java (from the PATH) will be used. +# + +# JAVA_OPTIONS +# Extra options to pass to the JVM +# + +# JETTY_HOME +# Where Jetty is installed. If not set, the script will try go +# guess it by looking at the invocation path for the script +# The java system property "jetty.home" will be +# set to this value for use by configure.xml files, f.e.: +# +# /webapps/jetty.war +# +JETTY_HOME=/usr/local/jetty + +# +# JETTY_BASE +# Where your Jetty base directory is. If not set, the value from +# $JETTY_HOME will be used. +# +# IT IS STRONGLY RECOMMENDED THAT YOU MODIFY THIS VARIABLE TO POINT +# TO THE INSTALLATION OF YOUR WEB APPLICATION, KEEPING YOUR WEB +# APPLICATION SEPARATE FROM THE JETTY HOME LOCATION. +# +# MORE INFORMATION HERE: +# +# http://www.eclipse.org/jetty/documentation/current/startup-base-and-home.html +# +JETTY_BASE=%%WWWDIR%% + +# JETTY_RUN +# Where the $NAME.pid file should be stored. It defaults to the +# first available of /var/run, /usr/var/run, JETTY_BASE and /tmp +# if not set. +# + +# JETTY_PID +# The Jetty PID file, defaults to $JETTY_RUN/$NAME.pid +# +JETTY_PID=%%RUNDIR%%/shibboleth.pid + +# JETTY_ARGS +# The default arguments to pass to jetty. +# For example +# JETTY_ARGS=jetty.http.port=8080 jetty.ssl.port=8443 +# +JETTY_ARGS=jetty.logging.dir=%%LOGDIR%% + +# JETTY_USER +# if set, then used as a username to run the server as +# + +JETTY_STATE=%%RUNDIR%%/shibboleth.state + +# JETTY_SHELL +# If set, then used as the shell by su when starting the server. Will have +# no effect if start-stop-daemon exists. Useful when JETTY_USER does not +# diff --git a/security/shibboleth-idp/pkg-descr b/security/shibboleth-idp/pkg-descr new file mode 100644 index 000000000000..64a7f015c1eb --- /dev/null +++ b/security/shibboleth-idp/pkg-descr @@ -0,0 +1,8 @@ +A simple Single Sign-On solution for any organisation with complex +identity management requirements. With excellent scaling capabilities +and customisable user-related data, the Identity Provider equips +workforces with a personalised user experience. + +* Widely adaptable to support custom scenarios +* Built-in support for a range of authentication systems +* Handles millions of authentication requests per day diff --git a/security/shibboleth-idp/pkg-plist b/security/shibboleth-idp/pkg-plist new file mode 100644 index 000000000000..bd54acfe3b41 --- /dev/null +++ b/security/shibboleth-idp/pkg-plist @@ -0,0 +1,272 @@ +%%DATADIR%%/LICENSE.txt +%%DATADIR%%/bin/aacli.bat +%%DATADIR%%/bin/aacli.sh +%%DATADIR%%/bin/ant-jetty.xml +%%DATADIR%%/bin/ant.bat +%%DATADIR%%/bin/ant.sh +%%DATADIR%%/bin/build.bat +%%DATADIR%%/bin/build.sh +%%DATADIR%%/bin/build.xml +%%DATADIR%%/bin/install-log.xml +%%DATADIR%%/bin/install.bat +%%DATADIR%%/bin/install.sh +%%DATADIR%%/bin/keygen.bat +%%DATADIR%%/bin/keygen.sh +%%DATADIR%%/bin/lib/.gitkeep +%%DATADIR%%/bin/lib/ant-1.10.12.jar +%%DATADIR%%/bin/lib/ant-launcher-1.10.12.jar +%%DATADIR%%/bin/lib/bcpg-jdk15on-1.70.jar +%%DATADIR%%/bin/lib/commons-compress-1.21.jar +%%DATADIR%%/bin/lib/idp-installer-4.2.1.jar +%%DATADIR%%/bin/lib/jcommander-1.81.jar +%%DATADIR%%/bin/mdquery.bat +%%DATADIR%%/bin/mdquery.sh +%%DATADIR%%/bin/module.bat +%%DATADIR%%/bin/module.sh +%%DATADIR%%/bin/plugin.bat +%%DATADIR%%/bin/plugin.sh +%%DATADIR%%/bin/reload-metadata.bat +%%DATADIR%%/bin/reload-metadata.sh +%%DATADIR%%/bin/reload-service.bat +%%DATADIR%%/bin/reload-service.sh +%%DATADIR%%/bin/runclass.bat +%%DATADIR%%/bin/runclass.sh +%%DATADIR%%/bin/sealer.bat +%%DATADIR%%/bin/sealer.sh +%%DATADIR%%/bin/seckeygen.bat +%%DATADIR%%/bin/seckeygen.sh +%%DATADIR%%/bin/status.bat +%%DATADIR%%/bin/status.sh +%%DATADIR%%/bin/version.bat +%%DATADIR%%/bin/version.sh +%%DATADIR%%/conf/access-control.xml +%%DATADIR%%/conf/admin/admin.properties +%%DATADIR%%/conf/admin/metrics.xml +%%DATADIR%%/conf/attribute-filter.xml +%%DATADIR%%/conf/attribute-registry.xml +%%DATADIR%%/conf/attribute-resolver.xml +%%DATADIR%%/conf/attributes/custom/README +%%DATADIR%%/conf/attributes/default-rules.xml +%%DATADIR%%/conf/attributes/eduCourse.xml +%%DATADIR%%/conf/attributes/eduPerson.xml +%%DATADIR%%/conf/attributes/inetOrgPerson.xml +%%DATADIR%%/conf/attributes/samlSubject.xml +%%DATADIR%%/conf/attributes/schac.xml +%%DATADIR%%/conf/audit.xml +%%DATADIR%%/conf/authn/authn-comparison.xml +%%DATADIR%%/conf/authn/authn-events-flow.xml +%%DATADIR%%/conf/authn/authn.properties +%%DATADIR%%/conf/c14n/subject-c14n-events-flow.xml +%%DATADIR%%/conf/c14n/subject-c14n.properties +%%DATADIR%%/conf/c14n/subject-c14n.xml +%%DATADIR%%/conf/credentials.xml +%%DATADIR%%/conf/errors.xml +%%DATADIR%%/conf/examples/attribute-resolver-ldap.xml +%%DATADIR%%/conf/global.xml +%%DATADIR%%/conf/idp.properties +%%DATADIR%%/conf/intercept/intercept-events-flow.xml +%%DATADIR%%/conf/ldap.properties +%%DATADIR%%/conf/logback.xml +%%DATADIR%%/conf/metadata-providers.xml +%%DATADIR%%/conf/relying-party.xml +%%DATADIR%%/conf/saml-nameid.properties +%%DATADIR%%/conf/saml-nameid.xml +%%DATADIR%%/conf/services.properties +%%DATADIR%%/conf/services.xml +%%DATADIR%%/credentials/.gitkeep +%%DATADIR%%/doc/BC-LICENSE.txt +%%DATADIR%%/doc/CREDITS.txt +%%DATADIR%%/doc/DUO-LICENSE.txt +%%DATADIR%%/doc/JQUERY-LICENSE.txt +%%DATADIR%%/doc/README.txt +%%DATADIR%%/doc/RELEASE-NOTES.txt +%%DATADIR%%/doc/SPYMEMCACHED-LICENSE.txt +%%DATADIR%%/flows/authn/conditions/account-locked/account-locked-flow.xml +%%DATADIR%%/flows/authn/conditions/conditions-flow.xml +%%DATADIR%%/flows/authn/conditions/expired-password/expired-password-flow.xml +%%DATADIR%%/flows/authn/conditions/expiring-password/expiring-password-flow.xml +%%DATADIR%%/flows/user/prefs/prefs-flow.xml +@comment %%DATADIR%%/logs/.gitkeep +%%DATADIR%%/messages/messages.properties +%%DATADIR%%/system/DONOTTOUCH +%%DATADIR%%/system/conf/global-system.xml +%%DATADIR%%/system/conf/mvc-beans.xml +%%DATADIR%%/system/conf/webflow-config.xml +%%DATADIR%%/views/client-storage/client-storage-read.vm +%%DATADIR%%/views/client-storage/client-storage-write.vm +%%DATADIR%%/views/error.vm +%%DATADIR%%/views/logout-complete.vm +%%DATADIR%%/views/logout-propagate.vm +%%DATADIR%%/views/logout.vm +%%DATADIR%%/views/user-prefs.js +%%DATADIR%%/views/user-prefs.vm +%%DATADIR%%/webapp/META-INF/MANIFEST.MF +%%DATADIR%%/webapp/WEB-INF/idpui.tld +%%DATADIR%%/webapp/WEB-INF/jsp/metadata.jsp +%%DATADIR%%/webapp/WEB-INF/jsp/status.jsp +%%DATADIR%%/webapp/WEB-INF/lib/DuoWeb-1.3.jar +%%DATADIR%%/webapp/WEB-INF/lib/UserAgentUtils-1.21.jar +%%DATADIR%%/webapp/WEB-INF/lib/annotations-17.0.0.jar +%%DATADIR%%/webapp/WEB-INF/lib/antlr-2.7.7.jar +%%DATADIR%%/webapp/WEB-INF/lib/bcpkix-jdk15on-1.70.jar +%%DATADIR%%/webapp/WEB-INF/lib/bcprov-jdk15on-1.70.jar +%%DATADIR%%/webapp/WEB-INF/lib/bcutil-jdk15on-1.70.jar +%%DATADIR%%/webapp/WEB-INF/lib/byte-buddy-1.10.21.jar +%%DATADIR%%/webapp/WEB-INF/lib/checker-qual-3.12.0.jar +%%DATADIR%%/webapp/WEB-INF/lib/classmate-1.5.1.jar +%%DATADIR%%/webapp/WEB-INF/lib/commons-cli-1.4.jar +%%DATADIR%%/webapp/WEB-INF/lib/commons-codec-1.15.jar +%%DATADIR%%/webapp/WEB-INF/lib/commons-compiler-3.1.6.jar +%%DATADIR%%/webapp/WEB-INF/lib/commons-dbcp2-2.9.0.jar +%%DATADIR%%/webapp/WEB-INF/lib/commons-lang-2.6.jar +%%DATADIR%%/webapp/WEB-INF/lib/commons-lang3-3.11.jar +%%DATADIR%%/webapp/WEB-INF/lib/commons-pool2-2.10.0.jar +%%DATADIR%%/webapp/WEB-INF/lib/cryptacular-1.2.4.jar +%%DATADIR%%/webapp/WEB-INF/lib/dom4j-2.1.3.jar +%%DATADIR%%/webapp/WEB-INF/lib/error_prone_annotations-2.11.0.jar +%%DATADIR%%/webapp/WEB-INF/lib/failureaccess-1.0.1.jar +%%DATADIR%%/webapp/WEB-INF/lib/guava-31.1-jre.jar +%%DATADIR%%/webapp/WEB-INF/lib/hibernate-commons-annotations-5.1.2.Final.jar +%%DATADIR%%/webapp/WEB-INF/lib/hibernate-core-5.4.30.Final.jar +%%DATADIR%%/webapp/WEB-INF/lib/httpclient-4.5.13.jar +%%DATADIR%%/webapp/WEB-INF/lib/httpclient-cache-4.5.13.jar +%%DATADIR%%/webapp/WEB-INF/lib/httpcore-4.4.15.jar +%%DATADIR%%/webapp/WEB-INF/lib/idp-admin-api-4.2.1.jar +%%DATADIR%%/webapp/WEB-INF/lib/idp-admin-impl-4.2.1.jar +%%DATADIR%%/webapp/WEB-INF/lib/idp-attribute-api-4.2.1.jar +%%DATADIR%%/webapp/WEB-INF/lib/idp-attribute-filter-api-4.2.1.jar +%%DATADIR%%/webapp/WEB-INF/lib/idp-attribute-filter-impl-4.2.1.jar +%%DATADIR%%/webapp/WEB-INF/lib/idp-attribute-filter-spring-4.2.1.jar +%%DATADIR%%/webapp/WEB-INF/lib/idp-attribute-impl-4.2.1.jar +%%DATADIR%%/webapp/WEB-INF/lib/idp-attribute-resolver-api-4.2.1.jar +%%DATADIR%%/webapp/WEB-INF/lib/idp-attribute-resolver-impl-4.2.1.jar +%%DATADIR%%/webapp/WEB-INF/lib/idp-attribute-resolver-spring-4.2.1.jar +%%DATADIR%%/webapp/WEB-INF/lib/idp-authn-api-4.2.1.jar +%%DATADIR%%/webapp/WEB-INF/lib/idp-authn-impl-4.2.1.jar +%%DATADIR%%/webapp/WEB-INF/lib/idp-cas-api-4.2.1.jar +%%DATADIR%%/webapp/WEB-INF/lib/idp-cas-impl-4.2.1.jar +%%DATADIR%%/webapp/WEB-INF/lib/idp-conf-impl-4.2.1.jar +%%DATADIR%%/webapp/WEB-INF/lib/idp-consent-api-4.2.1.jar +%%DATADIR%%/webapp/WEB-INF/lib/idp-consent-impl-4.2.1.jar +%%DATADIR%%/webapp/WEB-INF/lib/idp-core-4.2.1.jar +%%DATADIR%%/webapp/WEB-INF/lib/idp-profile-api-4.2.1.jar +%%DATADIR%%/webapp/WEB-INF/lib/idp-profile-impl-4.2.1.jar +%%DATADIR%%/webapp/WEB-INF/lib/idp-profile-spring-4.2.1.jar +%%DATADIR%%/webapp/WEB-INF/lib/idp-saml-api-4.2.1.jar +%%DATADIR%%/webapp/WEB-INF/lib/idp-saml-impl-4.2.1.jar +%%DATADIR%%/webapp/WEB-INF/lib/idp-schema-4.2.1.jar +%%DATADIR%%/webapp/WEB-INF/lib/idp-session-api-4.2.1.jar +%%DATADIR%%/webapp/WEB-INF/lib/idp-session-impl-4.2.1.jar +%%DATADIR%%/webapp/WEB-INF/lib/idp-ui-4.2.1.jar +%%DATADIR%%/webapp/WEB-INF/lib/idwsfconsumer-2.1.0.jar +%%DATADIR%%/webapp/WEB-INF/lib/istack-commons-runtime-3.0.12.jar +%%DATADIR%%/webapp/WEB-INF/lib/j2objc-annotations-1.3.jar +%%DATADIR%%/webapp/WEB-INF/lib/jackson-annotations-2.13.2.jar +%%DATADIR%%/webapp/WEB-INF/lib/jackson-core-2.13.2.jar +%%DATADIR%%/webapp/WEB-INF/lib/jackson-databind-2.13.2.2.jar +%%DATADIR%%/webapp/WEB-INF/lib/jackson-datatype-jsr310-2.13.2.jar +%%DATADIR%%/webapp/WEB-INF/lib/jakarta.activation-1.2.2.jar +%%DATADIR%%/webapp/WEB-INF/lib/jakarta.json-1.1.6.jar +%%DATADIR%%/webapp/WEB-INF/lib/jakarta.mail-1.6.7.jar +%%DATADIR%%/webapp/WEB-INF/lib/jakarta.xml.bind-api-2.3.3.jar +%%DATADIR%%/webapp/WEB-INF/lib/jandex-2.2.3.Final.jar +%%DATADIR%%/webapp/WEB-INF/lib/janino-3.1.6.jar +%%DATADIR%%/webapp/WEB-INF/lib/java-support-8.3.1.jar +%%DATADIR%%/webapp/WEB-INF/lib/javassist-3.27.0-GA.jar +%%DATADIR%%/webapp/WEB-INF/lib/javax.persistence-api-2.2.jar +%%DATADIR%%/webapp/WEB-INF/lib/jaxb-runtime-2.3.6.jar +%%DATADIR%%/webapp/WEB-INF/lib/jboss-logging-3.4.1.Final.jar +%%DATADIR%%/webapp/WEB-INF/lib/jboss-transaction-api_1.2_spec-1.1.1.Final.jar +%%DATADIR%%/webapp/WEB-INF/lib/joda-time-2.10.14.jar +%%DATADIR%%/webapp/WEB-INF/lib/jsonapi-converter-0.11.jar +%%DATADIR%%/webapp/WEB-INF/lib/jsr305-3.0.2.jar +%%DATADIR%%/webapp/WEB-INF/lib/jul-to-slf4j-1.7.36.jar +%%DATADIR%%/webapp/WEB-INF/lib/ldaptive-1.3.1.jar +%%DATADIR%%/webapp/WEB-INF/lib/listenablefuture-9999.0-empty-to-avoid-conflict-with-guava.jar +%%DATADIR%%/webapp/WEB-INF/lib/log4j-over-slf4j-1.7.36.jar +%%DATADIR%%/webapp/WEB-INF/lib/logback-classic-1.2.11.jar +%%DATADIR%%/webapp/WEB-INF/lib/logback-core-1.2.11.jar +%%DATADIR%%/webapp/WEB-INF/lib/metrics-core-4.2.9.jar +%%DATADIR%%/webapp/WEB-INF/lib/metrics-json-4.2.9.jar +%%DATADIR%%/webapp/WEB-INF/lib/metrics-jvm-4.2.9.jar +%%DATADIR%%/webapp/WEB-INF/lib/opensaml-core-4.2.0.jar +%%DATADIR%%/webapp/WEB-INF/lib/opensaml-messaging-api-4.2.0.jar +%%DATADIR%%/webapp/WEB-INF/lib/opensaml-messaging-impl-4.2.0.jar +%%DATADIR%%/webapp/WEB-INF/lib/opensaml-profile-api-4.2.0.jar +%%DATADIR%%/webapp/WEB-INF/lib/opensaml-profile-impl-4.2.0.jar +%%DATADIR%%/webapp/WEB-INF/lib/opensaml-saml-api-4.2.0.jar +%%DATADIR%%/webapp/WEB-INF/lib/opensaml-saml-impl-4.2.0.jar +%%DATADIR%%/webapp/WEB-INF/lib/opensaml-security-api-4.2.0.jar +%%DATADIR%%/webapp/WEB-INF/lib/opensaml-security-impl-4.2.0.jar +%%DATADIR%%/webapp/WEB-INF/lib/opensaml-soap-api-4.2.0.jar +%%DATADIR%%/webapp/WEB-INF/lib/opensaml-soap-impl-4.2.0.jar +%%DATADIR%%/webapp/WEB-INF/lib/opensaml-storage-api-4.2.0.jar +%%DATADIR%%/webapp/WEB-INF/lib/opensaml-storage-impl-4.2.0.jar +%%DATADIR%%/webapp/WEB-INF/lib/opensaml-xmlsec-api-4.2.0.jar +%%DATADIR%%/webapp/WEB-INF/lib/opensaml-xmlsec-impl-4.2.0.jar +%%DATADIR%%/webapp/WEB-INF/lib/slf4j-api-1.7.36.jar +%%DATADIR%%/webapp/WEB-INF/lib/spring-aop-5.3.19.jar +%%DATADIR%%/webapp/WEB-INF/lib/spring-beans-5.3.19.jar +%%DATADIR%%/webapp/WEB-INF/lib/spring-binding-2.5.1.RELEASE.jar +%%DATADIR%%/webapp/WEB-INF/lib/spring-context-5.3.19.jar +%%DATADIR%%/webapp/WEB-INF/lib/spring-core-5.3.19.jar +%%DATADIR%%/webapp/WEB-INF/lib/spring-expression-5.3.19.jar +%%DATADIR%%/webapp/WEB-INF/lib/spring-extensions-6.2.0.jar +%%DATADIR%%/webapp/WEB-INF/lib/spring-jcl-5.3.19.jar +%%DATADIR%%/webapp/WEB-INF/lib/spring-jdbc-5.3.19.jar +%%DATADIR%%/webapp/WEB-INF/lib/spring-orm-5.3.19.jar +%%DATADIR%%/webapp/WEB-INF/lib/spring-tx-5.3.19.jar +%%DATADIR%%/webapp/WEB-INF/lib/spring-web-5.3.19.jar +%%DATADIR%%/webapp/WEB-INF/lib/spring-webflow-2.5.1.RELEASE.jar +%%DATADIR%%/webapp/WEB-INF/lib/spring-webmvc-5.3.19.jar +%%DATADIR%%/webapp/WEB-INF/lib/spymemcached-2.12.3.jar +%%DATADIR%%/webapp/WEB-INF/lib/stax2-api-4.2.1.jar +%%DATADIR%%/webapp/WEB-INF/lib/txw2-2.3.6.jar +%%DATADIR%%/webapp/WEB-INF/lib/unboundid-ldapsdk-4.0.14.jar +%%DATADIR%%/webapp/WEB-INF/lib/velocity-engine-core-2.3.jar +%%DATADIR%%/webapp/WEB-INF/lib/woodstox-core-6.2.6.jar +%%DATADIR%%/webapp/WEB-INF/lib/xmlsec-2.3.0.jar +%%DATADIR%%/webapp/WEB-INF/spring.tld +%%DATADIR%%/webapp/WEB-INF/web.xml +%%DATADIR%%/webapp/css/logout.css +%%DATADIR%%/webapp/css/placeholder.css +%%DATADIR%%/webapp/images/failure-32x32.png +%%DATADIR%%/webapp/images/placeholder-logo.png +%%DATADIR%%/webapp/images/success-32x32.png +%%DATADIR%%/webapp/index.jsp +%%DATADIR%%/webapp/js/Duo-Web-v2.js +%%DATADIR%%/webapp/js/Duo-Web-v2.min.js +%%DATADIR%%/webapp/js/jquery-3.6.0.min.js +@dir(%%SHIBUSER%%,%%SHIBGROUP%%,755) %%DATADIR%%/metadata +@dir %%DATADIR%%/webapp/WEB-INF/classes +%%ETCDIR%%/shibboleth-idp +@dir %%ETCDIR%% +@sample %%EXAMPLESDIR%%/etc/jetty-requestlog.xml %%WWWDIR%%/etc/jetty-requestlog.xml +@sample %%EXAMPLESDIR%%/index.html %%WWWDIR%%/webapps/ROOT/index.html +@sample %%EXAMPLESDIR%%/modules/idp-logging.mod %%WWWDIR%%/modules/idp-logging.mod +@sample %%EXAMPLESDIR%%/modules/idp.mod %%WWWDIR%%/modules/idp.mod +@sample %%EXAMPLESDIR%%/resources/logback-access.xml %%WWWDIR%%/resources/logback-access.xml +@sample %%EXAMPLESDIR%%/resources/logback.xml %%WWWDIR%%/resources/logback.xml +@sample %%EXAMPLESDIR%%/start.d/http.ini %%WWWDIR%%/start.d/http.ini +@mode 640 +@group %%SHIBGROUP%% +@sample %%EXAMPLESDIR%%/start.d/idp.ini %%WWWDIR%%/start.d/idp.ini +@mode +@group +@sample %%EXAMPLESDIR%%/start.d/start.ini %%WWWDIR%%/start.d/start.ini +@sample %%EXAMPLESDIR%%/webapps/idp.xml %%WWWDIR%%/webapps/idp.xml +@sample %%EXAMPLESDIR%%/webapps/static.xml %%WWWDIR%%/webapps/static.xml +%%WWWDIR%%/lib/logging/logback-classic-%%LOGBACKVER%%.jar +%%WWWDIR%%/lib/logging/logback-core-%%LOGBACKVER%%.jar +@dir %%WWWDIR%%/conf +@dir %%WWWDIR%%/credentials +@dir %%WWWDIR%%/etc +@dir %%WWWDIR%%/modules +@dir %%WWWDIR%%/resources +@dir %%WWWDIR%%/start.d +@dir %%WWWDIR%%/webapps/ROOT +@dir %%WWWDIR%%/webapps +@dir %%WWWDIR%% +sbin/shibboleth-idp.sh +@dir(%%SHIBUSER%%,%%SHIBGROUP%%,755) %%RUNDIR%% +@dir(%%SHIBUSER%%,%%SHIBGROUP%%,755) %%LOGDIR%%