Script 'mail_helper' called by obssrc
Hello community,
here is the log from the commit of package shibboleth-sp for openSUSE:Factory
checked in at 2025-05-30 14:33:35
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/shibboleth-sp (Old)
and /work/SRC/openSUSE:Factory/.shibboleth-sp.new.25440 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "shibboleth-sp"
Fri May 30 14:33:35 2025 rev:25 rq:1281119 version:3.5.0
Changes:
--------
--- /work/SRC/openSUSE:Factory/shibboleth-sp/shibboleth-sp.changes
2024-11-13 15:29:12.639591431 +0100
+++ /work/SRC/openSUSE:Factory/.shibboleth-sp.new.25440/shibboleth-sp.changes
2025-05-30 17:27:20.588269202 +0200
@@ -1,0 +2,8 @@
+Thu May 29 10:17:16 UTC 2025 - Marius Grossu <marius.gro...@suse.com>
+
+- Removed BuildRequires: sysuser-shadow, exit 0, added %sysusers_requires
macro according to packaging guidelines and
+ %restart_on_update apache2 to remove the manual restart
+- Added disable-https.patch: Disable https to fix the shibboleth-sp is not
being served by apache
+ (bsc#1241702)
+
+-------------------------------------------------------------------
New:
----
disable-https.patch
BETA DEBUG BEGIN:
New: %restart_on_update apache2 to remove the manual restart
- Added disable-https.patch: Disable https to fix the shibboleth-sp is not
being served by apache
(bsc#1241702)
BETA DEBUG END:
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ shibboleth-sp.spec ++++++
--- /var/tmp/diff_new_pack.csVo2y/_old 2025-05-30 17:27:21.128291629 +0200
+++ /var/tmp/diff_new_pack.csVo2y/_new 2025-05-30 17:27:21.128291629 +0200
@@ -1,7 +1,7 @@
#
# spec file for package shibboleth-sp
#
-# Copyright (c) 2024 SUSE LLC
+# Copyright (c) 2025 SUSE LLC
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
@@ -33,6 +33,7 @@
Source2: %{name}.keyring
Source3: shibd.service
Patch0: shibboleth-sp-2.5.5-doxygen_timestamp.patch
+Patch1: disable-https.patch
BuildRequires: apache2-devel
BuildRequires: autoconf
BuildRequires: automake
@@ -49,7 +50,6 @@
BuildRequires: libxmltooling-devel >= 3.1.0
BuildRequires: pkgconfig
BuildRequires: systemd-rpm-macros
-BuildRequires: sysuser-shadow
BuildRequires: sysuser-tools
BuildRequires: unixODBC-devel
BuildRequires: zlib-devel
@@ -60,6 +60,7 @@
Requires(pre): shadow
Obsoletes: shibboleth-sp = 2.5.0
%{?systemd_requires}
+%sysusers_requires
%description
Shibboleth is a Web Single Sign-On implementations based on OpenSAML
@@ -177,7 +178,6 @@
%pre -f %{name}.pre
%service_add_pre shibd.service
-exit 0
%post -n libshibsp%{libvers} -p /sbin/ldconfig
%post -n libshibsp-lite%{libvers_lite} -p /sbin/ldconfig
@@ -199,9 +199,8 @@
# On final removal, stop shibd and remove service, restart Apache if running.
%service_del_preun shibd.service
if [ $1 -eq 0 ] ; then
- /sbin/service apache2 status 1>/dev/null && /sbin/service apache2
restart 1>/dev/null
+ %restart_on_update apache2
fi
-exit 0
%postun -n libshibsp%{libvers} -p /sbin/ldconfig
%postun -n libshibsp-lite%{libvers_lite} -p /sbin/ldconfig
@@ -217,7 +216,6 @@
# will stop doing the final restart.
%{_bindir}/systemctl try-restart shibd >/dev/null 2>&1 || :
%{_bindir}/systemctl try-restart apache2 >/dev/null 2>&1 || :
-exit 0
%files -f rpm.filelist
%{_sbindir}/shibd
++++++ disable-https.patch ++++++
Index: shibboleth-sp-3.5.0/configs/shibboleth2.xml
===================================================================
--- shibboleth-sp-3.5.0.orig/configs/shibboleth2.xml
+++ shibboleth-sp-3.5.0/configs/shibboleth2.xml
@@ -23,7 +23,7 @@
stolen in transit easier for attackers to misuse.
-->
<Sessions lifetime="28800" timeout="3600" relayState="ss:mem"
- checkAddress="false" handlerSSL="true" cookieProps="https"
+ checkAddress="false" handlerSSL="false" cookieProps="http"
redirectLimit="exact">
<!--
