-
Notifications
You must be signed in to change notification settings - Fork 2
/
cert_sorcerer.spec
109 lines (84 loc) · 3.59 KB
/
cert_sorcerer.spec
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
# Remove python byte-code compile step
%global __os_install_post %(echo '%{__os_install_post}' | sed -e 's!/usr/lib[^[:space:]]*/brp-python-bytecompile[[:space:]].*$!!g')
Name: cert_sorcerer
Version: 1.1.1a
Release: 1%{?dist}
Summary: A tool for requesting certificates
Group: Applications/Internet
License: GPLv3
URL: https://github.com/sfayer/cert_sorcerer
Source0: https://raw.github.com/sfayer/cert_sorcerer/v1_1_1/CS.py
Source1: https://raw.github.com/sfayer/cert_sorcerer/v1_1_1/README
Source2: https://raw.github.com/sfayer/cert_sorcerer/v1_1_1/NOTES
Source3: https://raw.github.com/sfayer/cert_sorcerer/v1_1_1/QUICKSTART
Source4: https://raw.github.com/sfayer/cert_sorcerer/v1_1_1/COPYING
BuildArch: noarch
BuildRoot: %(mktemp -ud %{_tmppath}/%{name}-%{version}-%{release}-XXXXXX)
Requires: openssl python3 python3-pycurl python3-cryptography
%description
Cert Sorcerer is a tool for requestion certificates from a CA web-service.
You should customise this package with your various local parameters.
%prep
cp %{SOURCE1} README
cp %{SOURCE2} NOTES
cp %{SOURCE3} QUICKSTART
cp %{SOURCE4} COPYING
%build
%install
rm -Rf %{buildroot}
# Install binary
mkdir -p %{buildroot}%{_bindir}
cp %{SOURCE0} %{buildroot}%{_bindir}/CS.py
chmod 755 %{buildroot}%{_bindir}/CS.py
%clean
rm -rf %{buildroot}
%files
%defattr(-,root,root,-)
%{_bindir}/CS.py
%doc README NOTES QUICKSTART COPYING
%changelog
* ??? ??? ?? ???? Simon Fayer <[email protected]> - 1.1.1-1
- Nothing yet!
* Fri Jan 03 2025 Simon Fayer <[email protected]> - 1.1.0-1
- Drop python2 (EL7) support.
- Switch from pyopenssl to cryptography.
- Note: --san option format has changed.
- Remove openssl popen callouts.
- Check domain name matches expected value before doing anything.
- Fix iteritems crash on store cleanup.
- Minor fixes and tidy-up.
* Tue Jul 25 2023 Simon Fayer <[email protected]> - 1.0.13-1
- Update CA certs + auto-update ca.pem when needed.
* Thu Dec 22 2022 Simon Fayer <[email protected]> - 1.0.12-1
- Fix py27 renewals due to typo in 1.0.11 version.
* Fri Nov 11 2022 Simon Fayer <[email protected]> - 1.0.11-1
- Ensure user-pin is in bytes (rather than unicode) before hashing.
- Set user e-mail SAN for usercert request correctly.
* Wed Aug 18 2021 Simon Fayer <[email protected]> - 1.0.10-1
- Use sha256 for CSR signatures.
* Wed Feb 03 2021 Simon Fayer <[email protected]> - 1.0.9-1
- Use new post interface for fetching certs due to '//' URL problem.
* Fri May 01 2020 Simon Fayer <[email protected]> - 1.0.8-1
- Add support for python3 (CentOS8).
* Wed May 16 2018 Simon Fayer <[email protected]> - 1.0.7-1
- Add support for extra SAN values in certificates.
* Fri Jun 28 2013 Simon Fayer <[email protected]> - 1.0.6-1
- Support for DNs containing "/".
- Print full DN before prompting the user.
- Fixed typo in p12 instructions (chown -> chmod).
- Change user agent to reflect actual name & version.
* Thu Jun 27 2013 Simon Fayer <[email protected]> - 1.0.5-1
- Improve error message if usercert is missing.
* Sat Jun 15 2013 Simon Fayer <[email protected]> - 1.0.4-1
- Minor updates to the code style and documentation.
* Tue May 07 2013 Simon Fayer <[email protected]> - 1.0.3-1
- Use slightly modified interface to fetch certs.
- New --fetch option to make fetching certs safer in batch mode.
* Wed May 01 2013 Simon Fayer <[email protected]> - 1.0.2-1
- Ensure private key is kept in PKCS#1 format.
- Other minor fixes.
* Wed May 01 2013 Simon Fayer <[email protected]> - 1.0.1-1
- Latest version.
- New batch mode.
* Fri Apr 26 2013 Simon Fayer <[email protected]> - 1.0.0-1
- Initial version.