sys-apps/rsbac-admin/rsbac-admin-1.4.6-r1.ebuild

# Copyright 1999-2012 Gentoo Foundation
# Distributed under the terms of the GNU General Public License v2
# $Header: /var/cvsroot/gentoo-x86/sys-apps/rsbac-admin/rsbac-admin-1.4.6.ebuild,v 1.1 2012/01/07 20:14:04 blueness Exp $

EAPI="4"

inherit multilib toolchain-funcs

DESCRIPTION="Rule Set Based Access Control (RSBAC) Admin Tools"
HOMEPAGE="http://www.rsbac.org/"
SRC_URI="http://www.rsbac.org/dl.php?file=code/${PV}/${P}.tar.bz2"

LICENSE="GPL-2"
SLOT="0"
KEYWORDS="~amd64 ~x86"
# using rklogd is deprecated but offer the option since it is fully removed
# from source
IUSE="pam rklogd"

DEPEND="
        dev-util/dialog
        pam? ( sys-libs/pam )
        sys-apps/baselayout
        >=sys-libs/ncurses-5.2"

RDEPEND="${DEPEND}"

src_compile() {
        local rsbacmakeargs="libs tools"
        use rklogd && rsbacmakeargs="${rsbacmakeargs} rklogd"
        use pam && rsbacmakeargs="${rsbacmakeargs} pam nss"
        emake PREFIX=/usr LIBDIR=/$(get_libdir) ${rsbacmakeargs}
}

src_install() {
        local rsbacinstallargs="headers-install libs-install tools-install"
        use rklogd && rsbacinstallargs="${rsbacinstallargs} rklogd-install"
        use pam && rsbacinstallargs="${rsbacinstallargs} pam-install nss-install"
        emake PREFIX=/usr LIBDIR=/$(get_libdir) DESTDIR="${D}" ${rsbacinstallargs}

        use rklogd && doinitd "${FILESDIR}"/rklogd

        insinto /etc
        doins "${FILESDIR}"/rsbac.conf

        #FHS compliance
        dodir /usr/$(get_libdir)
        mv "${D}"/$(get_libdir)/librsbac.{,l}a "${D}"/usr/$(get_libdir)
        mv "${D}"/$(get_libdir)/libnss_rsbac.{,l}a "${D}"/usr/$(get_libdir)
        gen_usr_ldscript librsbac.so
        gen_usr_ldscript libnss_rsbac.so
}

pkg_postinst() {
        einfo "********************************************************************************"
        einfo "You have to add a security user to your system if you have not already done so."
        einfo "The name could be 'secoff' or 'security' and, if you did not change the default"
        einfo "uid in the RSBAC kernel configuration, then the following will work:"
        einfo
        einfo "    groupadd -g 400 security"
        einfo "    useradd -g 400 -u 400 security"
        einfo
        einfo "We suggest you run a separate copy of syslog-ng (for example) to log RSBAC"
        einfo "messages as user 'audit' (uid 404) instead of using the deprecated rklogd."
        einfo "See"
        einfo
        einfo "    http://www.rsbac.org/documentation/administration_examples/syslog-ng"
        einfo
        einfo "for more information."
        einfo "********************************************************************************"
}
1	# Copyright 1999-2012 Gentoo Foundation
2	# Distributed under the terms of the GNU General Public License v2
3	# $Header: /var/cvsroot/gentoo-x86/sys-apps/rsbac-admin/rsbac-admin-1.4.6.ebuild,v 1.1 2012/01/07 20:14:04 blueness Exp $
4
5	EAPI="4"
6
7	inherit multilib toolchain-funcs
8
9	DESCRIPTION="Rule Set Based Access Control (RSBAC) Admin Tools"
10	HOMEPAGE="http://www.rsbac.org/"
11	SRC_URI="http://www.rsbac.org/dl.php?file=code/${PV}/${P}.tar.bz2"
12
13	LICENSE="GPL-2"
14	SLOT="0"
15	KEYWORDS="~amd64 ~x86"
16	# using rklogd is deprecated but offer the option since it is fully removed
17	# from source
18	IUSE="pam rklogd"
19
20	DEPEND="
21	dev-util/dialog
22	pam? ( sys-libs/pam )
23	sys-apps/baselayout
24	>=sys-libs/ncurses-5.2"
25
26	RDEPEND="${DEPEND}"
27
28	src_compile() {
29	local rsbacmakeargs="libs tools"
30	use rklogd && rsbacmakeargs="${rsbacmakeargs} rklogd"
31	use pam && rsbacmakeargs="${rsbacmakeargs} pam nss"
32	emake PREFIX=/usr LIBDIR=/$(get_libdir) ${rsbacmakeargs}
33	}
34
35	src_install() {
36	local rsbacinstallargs="headers-install libs-install tools-install"
37	use rklogd && rsbacinstallargs="${rsbacinstallargs} rklogd-install"
38	use pam && rsbacinstallargs="${rsbacinstallargs} pam-install nss-install"
39	emake PREFIX=/usr LIBDIR=/$(get_libdir) DESTDIR="${D}" ${rsbacinstallargs}
40
41	use rklogd && doinitd "${FILESDIR}"/rklogd
42
43	insinto /etc
44	doins "${FILESDIR}"/rsbac.conf
45
46	#FHS compliance
47	dodir /usr/$(get_libdir)
48	mv "${D}"/$(get_libdir)/librsbac.{,l}a "${D}"/usr/$(get_libdir)
49	mv "${D}"/$(get_libdir)/libnss_rsbac.{,l}a "${D}"/usr/$(get_libdir)
50	gen_usr_ldscript librsbac.so
51	gen_usr_ldscript libnss_rsbac.so
52	}
53
54	pkg_postinst() {
55	einfo "********************************************************************************"
56	einfo "You have to add a security user to your system if you have not already done so."
57	einfo "The name could be 'secoff' or 'security' and, if you did not change the default"
58	einfo "uid in the RSBAC kernel configuration, then the following will work:"
59	einfo
60	einfo " groupadd -g 400 security"
61	einfo " useradd -g 400 -u 400 security"
62	einfo
63	einfo "We suggest you run a separate copy of syslog-ng (for example) to log RSBAC"
64	einfo "messages as user 'audit' (uid 404) instead of using the deprecated rklogd."
65	einfo "See"
66	einfo
67	einfo " http://www.rsbac.org/documentation/administration_examples/syslog-ng"
68	einfo
69	einfo "for more information."
70	einfo "********************************************************************************"
71	}