2017-11-27 23:31:45 +00:00
|
|
|
%if 0%{?fedora} || 0%{?rhel} > 7
|
2016-06-15 00:14:20 +00:00
|
|
|
%global with_python3 1
|
2017-11-27 23:31:45 +00:00
|
|
|
%else
|
|
|
|
|
%global with_python3 0
|
2016-06-15 00:14:20 +00:00
|
|
|
%endif
|
|
|
|
|
|
2011-03-24 05:16:52 +00:00
|
|
|
Summary: Dogtag Public Key Infrastructure (PKI) Suite
|
|
|
|
|
Name: dogtag-pki
|
2017-06-07 20:52:05 +00:00
|
|
|
%if 0%{?rhel}
|
2018-03-16 05:52:34 +00:00
|
|
|
Version: 10.6.0
|
|
|
|
|
Release: 0.2%{?_timestamp}%{?_commit}%{?dist}
|
2017-10-20 00:04:10 +00:00
|
|
|
%else
|
2018-03-16 05:52:34 +00:00
|
|
|
Version: 10.6.0
|
|
|
|
|
Release: 0.2%{?_timestamp}%{?_commit}%{?dist}
|
2017-10-20 00:04:10 +00:00
|
|
|
%endif
|
|
|
|
|
|
2011-03-24 05:16:52 +00:00
|
|
|
# The entire source code is GPLv2 except for 'pki-tps' which is LGPLv2
|
|
|
|
|
License: GPLv2 and LGPLv2
|
|
|
|
|
URL: http://pki.fedoraproject.org/
|
|
|
|
|
BuildArch: noarch
|
|
|
|
|
|
2014-12-04 22:44:20 +00:00
|
|
|
%define dogtag_pki_theme_version %{version}
|
2017-11-27 23:31:45 +00:00
|
|
|
%if 0%{?fedora} >= 27 || 0%{?rhel} > 7
|
2017-08-24 22:25:05 +00:00
|
|
|
%define esc_version 1.1.1
|
|
|
|
|
%else
|
2013-01-15 18:42:24 +00:00
|
|
|
%define esc_version 1.1.0
|
2017-08-24 22:25:05 +00:00
|
|
|
%endif
|
2014-12-04 22:44:20 +00:00
|
|
|
# NOTE: The following package versions are TLS compliant:
|
2016-06-15 00:14:20 +00:00
|
|
|
%if 0%{?rhel}
|
2017-11-03 21:38:21 +00:00
|
|
|
%define pki_core_rhel_version 10.5.1
|
2016-06-15 00:14:20 +00:00
|
|
|
%define pki_core_rhcs_version %{version}
|
|
|
|
|
%else
|
2015-04-24 05:07:18 +00:00
|
|
|
%define pki_core_version %{version}
|
2016-06-15 00:14:20 +00:00
|
|
|
%endif
|
2015-04-24 05:07:18 +00:00
|
|
|
%define pki_console_version %{version}
|
2011-03-24 05:16:52 +00:00
|
|
|
|
2017-11-27 23:31:45 +00:00
|
|
|
%if 0%{?fedora} >= 27 || 0%{?rhel} > 7
|
2017-08-24 22:25:05 +00:00
|
|
|
# Exclude 'aarch64' and 's390x' architectures since
|
|
|
|
|
# 'esc' does not exist on these two platforms
|
|
|
|
|
ExcludeArch: aarch64 s390x
|
|
|
|
|
%endif
|
|
|
|
|
|
2011-03-24 05:16:52 +00:00
|
|
|
# Make certain that this 'meta' package requires the latest version(s)
|
|
|
|
|
# of ALL Dogtag PKI theme packages
|
2012-11-13 03:53:06 +00:00
|
|
|
Requires: dogtag-pki-server-theme >= %{dogtag_pki_theme_version}
|
2011-09-13 11:05:54 +00:00
|
|
|
Requires: dogtag-pki-console-theme >= %{dogtag_pki_theme_version}
|
2011-03-24 05:16:52 +00:00
|
|
|
|
2016-06-15 00:14:20 +00:00
|
|
|
%if 0%{?rhel}
|
|
|
|
|
# Make certain that this 'meta' package requires the latest version(s)
|
|
|
|
|
# of ALL Red Hat PKI core (RHEL) packages
|
|
|
|
|
Requires: pki-base >= %{pki_core_rhel_version}
|
|
|
|
|
Requires: pki-base-java >= %{pki_core_rhel_version}
|
|
|
|
|
%if 0%{?with_python3}
|
|
|
|
|
Requires: pki-base-python3 >= %{pki_core_rhel_version}
|
|
|
|
|
%endif
|
|
|
|
|
Requires: pki-ca >= %{pki_core_rhel_version}
|
|
|
|
|
Requires: pki-kra >= %{pki_core_rhel_version}
|
|
|
|
|
Requires: pki-server >= %{pki_core_rhel_version}
|
|
|
|
|
Requires: pki-symkey >= %{pki_core_rhel_version}
|
|
|
|
|
Requires: pki-tools >= %{pki_core_rhel_version}
|
|
|
|
|
|
|
|
|
|
# Make certain that this 'meta' package requires the latest version(s)
|
|
|
|
|
# of ALL Red Hat PKI core (RHCS) packages
|
|
|
|
|
Requires: pki-ocsp >= %{pki_core_rhcs_version}
|
|
|
|
|
Requires: pki-tks >= %{pki_core_rhcs_version}
|
|
|
|
|
Requires: pki-tps >= %{pki_core_rhcs_version}
|
|
|
|
|
%else
|
2011-03-24 05:16:52 +00:00
|
|
|
# Make certain that this 'meta' package requires the latest version(s)
|
|
|
|
|
# of ALL Dogtag PKI core packages
|
2016-06-15 00:14:20 +00:00
|
|
|
Requires: pki-base >= %{pki_core_version}
|
|
|
|
|
Requires: pki-base-java >= %{pki_core_version}
|
|
|
|
|
%if 0%{?with_python3}
|
|
|
|
|
Requires: pki-base-python3 >= %{pki_core_version}
|
|
|
|
|
%endif
|
2011-09-13 11:05:54 +00:00
|
|
|
Requires: pki-ca >= %{pki_core_version}
|
2014-12-04 22:44:20 +00:00
|
|
|
Requires: pki-kra >= %{pki_core_version}
|
|
|
|
|
Requires: pki-ocsp >= %{pki_core_version}
|
2012-09-14 19:23:52 +00:00
|
|
|
Requires: pki-server >= %{pki_core_version}
|
2011-09-13 11:05:54 +00:00
|
|
|
Requires: pki-symkey >= %{pki_core_version}
|
2016-06-15 00:14:20 +00:00
|
|
|
Requires: pki-tks >= %{pki_core_version}
|
|
|
|
|
Requires: pki-tools >= %{pki_core_version}
|
|
|
|
|
Requires: pki-tps >= %{pki_core_version}
|
|
|
|
|
%endif
|
2011-03-24 05:16:52 +00:00
|
|
|
|
|
|
|
|
# Make certain that this 'meta' package requires the latest version(s)
|
|
|
|
|
# of Dogtag PKI console
|
2011-09-13 11:05:54 +00:00
|
|
|
Requires: pki-console >= %{pki_console_version}
|
2011-03-24 05:16:52 +00:00
|
|
|
|
|
|
|
|
# Make certain that this 'meta' package requires the latest version(s)
|
|
|
|
|
# of ALL Dogtag PKI clients
|
2011-09-13 11:05:54 +00:00
|
|
|
Requires: esc >= %{esc_version}
|
2011-03-24 05:16:52 +00:00
|
|
|
|
|
|
|
|
%description
|
|
|
|
|
The Dogtag Public Key Infrastructure (PKI) Suite is comprised of the following
|
2014-09-08 04:52:13 +00:00
|
|
|
five subsystems and a client (for use by a Token Management System):
|
2011-03-24 05:16:52 +00:00
|
|
|
|
|
|
|
|
* Certificate Authority (CA)
|
2016-03-08 03:23:20 +00:00
|
|
|
* Key Recovery Authority (KRA)
|
2011-03-24 05:16:52 +00:00
|
|
|
* Online Certificate Status Protocol (OCSP) Manager
|
|
|
|
|
* Token Key Service (TKS)
|
|
|
|
|
* Token Processing System (TPS)
|
|
|
|
|
* Enterprise Security Client (ESC)
|
|
|
|
|
|
|
|
|
|
Additionally, it provides a console GUI application used for server and
|
2016-03-08 03:23:20 +00:00
|
|
|
user/group administration of CA, KRA, OCSP, and TKS, as well as various
|
|
|
|
|
command-line tools used to assist with a PKI deployment.
|
2011-03-24 05:16:52 +00:00
|
|
|
|
2016-03-08 03:23:20 +00:00
|
|
|
To successfully deploy instances of a CA, KRA, OCSP, TKS, or TPS,
|
2011-03-24 05:16:52 +00:00
|
|
|
a Tomcat Web Server must be up and running locally on this machine.
|
|
|
|
|
|
2016-03-08 03:23:20 +00:00
|
|
|
To meet the database storage requirements of each CA, KRA, OCSP, TKS, or TPS
|
2011-03-24 05:16:52 +00:00
|
|
|
instance, a 389 Directory Server must be up and running either locally on
|
|
|
|
|
this machine, or remotely over the attached network connection.
|
|
|
|
|
|
2016-03-08 03:23:20 +00:00
|
|
|
Finally, although they are no longer supplied by this 'meta' package,
|
|
|
|
|
javadocs are available for both JSS (jss-javadoc) and portions of
|
2016-06-15 00:14:20 +00:00
|
|
|
the Dogtag PKI API (pki-javadoc).
|
2016-03-08 03:23:20 +00:00
|
|
|
|
2014-12-04 22:44:20 +00:00
|
|
|
NOTE: As a convenience for standalone deployments, this 'dogtag-pki'
|
|
|
|
|
top-level meta package supplies Dogtag themes for use by the
|
|
|
|
|
certificate server packages:
|
|
|
|
|
|
|
|
|
|
* dogtag-pki-theme (Dogtag Certificate System deployments)
|
|
|
|
|
* dogtag-pki-server-theme
|
|
|
|
|
* dogtag-pki-console-theme
|
|
|
|
|
|
2011-03-24 05:16:52 +00:00
|
|
|
%prep
|
|
|
|
|
cat > README <<EOF
|
|
|
|
|
This package is just a "meta-package" whose dependencies pull in all of the
|
|
|
|
|
packages comprising the Dogtag Public Key Infrastructure (PKI) Suite.
|
|
|
|
|
EOF
|
|
|
|
|
|
|
|
|
|
%files
|
|
|
|
|
%defattr(-,root,root,-)
|
|
|
|
|
%doc README
|
|
|
|
|
|
|
|
|
|
%changelog
|
2018-03-16 05:52:34 +00:00
|
|
|
* Thu Mar 15 2018 Dogtag PKI Team <pki-devel@redhat.com> 10.6.0-0.2
|
|
|
|
|
- Rebased to PKI 10.6.0
|
2011-03-27 04:19:26 +00:00
|
|
|
|
