Skip to content

New package: kanidm-1.10.1 #60521

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
rtgnx wants to merge 1 commit into
base: master
Choose a base branch
from
Open

New package: kanidm-1.10.1 #60521

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
1 change: 1 addition & 0 deletions srcpkgs/kanidm-client
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
kanidm
1 change: 1 addition & 0 deletions srcpkgs/kanidm-server
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
kanidm
2 changes: 2 additions & 0 deletions srcpkgs/kanidm/files/kanidm-unixd-tasks/log/run
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,2 @@
#!/bin/sh
exec svlogd -tt /var/log/kanidm-unixd-tasks
6 changes: 6 additions & 0 deletions srcpkgs/kanidm/files/kanidm-unixd-tasks/run
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,6 @@
#!/bin/sh
exec 2>&1
[ -r ./conf ] && . ./conf

exec kanidm_unixd_tasks \
-c "${KANIDM_UNIXD_CONFIG:-/etc/kanidm/unixd}" ${OPTS}
2 changes: 2 additions & 0 deletions srcpkgs/kanidm/files/kanidm-unixd/log/run
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,2 @@
#!/bin/sh
exec svlogd -tt /var/log/kanidm-unixd
6 changes: 6 additions & 0 deletions srcpkgs/kanidm/files/kanidm-unixd/run
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,6 @@
#!/bin/sh
exec 2>&1
[ -r ./conf ] && . ./conf

exec chpst -u _kanidm_unixd:_kanidm_unixd kanidm_unixd \
-c "${KANIDM_UNIXD_CONFIG:-/etc/kanidm/unixd}" ${OPTS}
2 changes: 2 additions & 0 deletions srcpkgs/kanidm/files/kanidm/log/run
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,2 @@
#!/bin/sh
exec svlogd -tt /var/log/kanidm
6 changes: 6 additions & 0 deletions srcpkgs/kanidm/files/kanidm/run
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,6 @@
#!/bin/sh
exec 2>&1
[ -r ./conf ] && . ./conf

exec chpst -u _kanidm:_kanidm kanidmd server \
-c "${KANIDM_CONFIG:-/etc/kanidm/server.toml}" ${OPTS}
11 changes: 11 additions & 0 deletions srcpkgs/kanidm/files/server.toml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,11 @@
bindaddress = "[::]:8443"
ldapbindaddress = "[::]:3636"
db_path = "/var/lib/kanidm/kanidm.db"

domain = "idm.example.com"
origin = "https://idm.example.com:8443"

tls_chain = "/etc/kanidm/chain.pem"
tls_key = "/etc/kanidm/key.pem"

log_level = "info"
2 changes: 2 additions & 0 deletions srcpkgs/kanidm/files/unixd
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,2 @@
[kanidm]
pam_allowed_login_groups = ["unix-login"]
142 changes: 142 additions & 0 deletions srcpkgs/kanidm/template
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,142 @@
# Template file for 'kanidm'
pkgname=kanidm
version=1.10.1
revision=1
build_style=cargo
metapackage="yes"
hostmakedepends="pkg-config protobuf clang lld sqlite-devel"
makedepends="sqlite-devel openssl-devel pam-devel eudev-libudev-devel"
depends="kanidm-client>=${version}_${revision} kanidm-server>=${version}_${revision}"
short_desc="Simple and secure identity management platform"
maintainer="Adrian Cybulski <adrian@cybulski.cc>"
license="MPL-2.0"
homepage="https://kanidm.com/"
distfiles="https://github.com/kanidm/kanidm/archive/refs/tags/v${version}.tar.gz"
checksum=338911c568f44957ef2d0f2136c6dc71218701b5f018e359720289238a3b8e86

make_install_args="--path ."

system_accounts="_kanidm _kanidm_unixd"

_kanidm_homedir="/var/lib/kanidm"
_kanidm_descr="Kanidm server user"

_kanidm_unixd_homedir="/var/lib/kanidm-unixd"
_kanidm_unixd_descr="Kanidm UNIX integration daemon"

make_dirs="
/var/lib/kanidm 0750 _kanidm _kanidm
/var/lib/kanidm-unixd 0750 _kanidm_unixd _kanidm_unixd
/var/log/kanidm 0750 _kanidm _kanidm
/var/log/kanidm-unixd 0755 root root
/var/log/kanidm-unixd-tasks 0755 root root
/etc/kanidm 0755 root root
"


subpackages="kanidm-server kanidm-client"

do_build() {
if [ "$CROSS_BUILD" ]; then
export CC_${RUST_TARGET//-/_}="${CC}"
export CXX_${RUST_TARGET//-/_}="${CXX}"
export CFLAGS_${RUST_TARGET//-/_}="${CFLAGS}"
export CXXFLAGS_${RUST_TARGET//-/_}="${CXXFLAGS}"

export CC_${RUST_BUILD//-/_}="${BUILD_CC}"
export CXX_${RUST_BUILD//-/_}="${BUILD_CXX}"
export CFLAGS_${RUST_BUILD//-/_}="${BUILD_CFLAGS}"
export CXXFLAGS_${RUST_BUILD//-/_}="${BUILD_CXXFLAGS}"

export CC="${BUILD_CC}"
export CXX="${BUILD_CXX}"
export CFLAGS="${BUILD_CFLAGS}"
export CXXFLAGS="${BUILD_CXXFLAGS}"
fi

if [ -z "$CROSS_BUILD" ]; then
export CC=clang
export CXX=clang++
export RUSTFLAGS="${RUSTFLAGS:+$RUSTFLAGS }-C linker=clang -C link-arg=-fuse-ld=lld"
fi

# Client tools
cargo build --release --locked --target "${RUST_TARGET}" \
-p kanidm_tools \
--bin kanidm \
--bin kanidm_ssh_authorizedkeys_direct

# Server daemon
cargo build --release --locked --target "${RUST_TARGET}" \
--bin kanidmd

# Unix integration daemon/tools
cargo build --release --locked --target "${RUST_TARGET}" \
-p kanidm_unix_int \
--bin kanidm_unixd \
--bin kanidm_unixd_tasks \
--bin kanidm_ssh_authorizedkeys

# NSS/PAM shared objects
cargo build --release --locked --target "${RUST_TARGET}" \
-p nss_kanidm \
-p pam_kanidm

}

do_install() {
local cargo_target_dir="target/${RUST_TARGET}/release"

vbin "${cargo_target_dir}/kanidm"
vbin "${cargo_target_dir}/kanidmd"
vbin "${cargo_target_dir}/kanidm_ssh_authorizedkeys_direct"

vbin "${cargo_target_dir}/kanidm_unixd"
vbin "${cargo_target_dir}/kanidm_unixd_tasks"
vbin "${cargo_target_dir}/kanidm_ssh_authorizedkeys"

# NSS wants .so.2
vinstall "${cargo_target_dir}/libnss_kanidm.so" 0755 usr/lib libnss_kanidm.so.2

# PAM module path on Void/glibc should be this
vinstall "${cargo_target_dir}/libpam_kanidm.so" 0755 usr/lib/security pam_kanidm.so

vinstall "${FILESDIR}/server.toml" 0644 etc/kanidm server.toml
vinstall "${FILESDIR}/unixd" 0644 etc/kanidm unixd

vsv kanidm
vsv kanidm-unixd
vsv kanidm-unixd-tasks
#vdoc "${FILESDIR}/README.voidlinux"
}

kanidm-client_package() {
short_desc+=" - client tools"
conf_files="/etc/kanidm/unixd"

pkg_install() {
vmove usr/bin/kanidm
vmove usr/bin/kanidm_ssh_authorizedkeys_direct
vmove usr/bin/kanidm_unixd
vmove usr/bin/kanidm_unixd_tasks
vmove usr/bin/kanidm_ssh_authorizedkeys

vmove usr/lib/libnss_kanidm.so.2
vmove usr/lib/security/pam_kanidm.so

vmove etc/kanidm/unixd
vmove etc/sv/kanidm-unixd
vmove etc/sv/kanidm-unixd-tasks
}
}

kanidm-server_package() {
short_desc+=" - server daemon"
conf_files="/etc/kanidm/server.toml"

pkg_install() {
vmove usr/bin/kanidmd
vmove etc/kanidm/server.toml
vmove etc/sv/kanidm
}
}
Loading