File webyast-base-ws.spec of Package webyast-base-ws

# spec file for package webyast-base-ws
# Copyright (c) 2011 SUSE LINUX Products GmbH, Nuernberg, Germany.
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
# upon. The license for this file, and modifications and additions to the
# file, is the same license as for the pristine package itself (unless the
# license for the pristine package is not an Open Source License, in which
# case the license is the MIT License). An "Open Source License" is a
# license that conforms to the Open Source Definition (Version 1.9)
# published by the Open Source Initiative.

# Please submit bugfixes or comments via

Name:           webyast-base-ws
Provides:       yast2-webservice = %{version}
Obsoletes:      yast2-webservice < %{version}

%if 0%{?suse_version} == 0 || %suse_version > 1110
# 11.2 or newer

%if 0%{?suse_version} > 1120
# since 11.3, they are in a separate subpackage
Requires:       sysvinit-tools
# Require startproc respecting -p, bnc#559534#c44
Requires:       sysvinit > 2.86-215.2
Requires:       yast2-core >= 2.18.10
# 11.1 or SLES11
Requires:       yast2-core >=
Requires:       sysvinit > 2.86-195.3.1
Requires:       nginx-passenger
Requires:       ruby-fcgi, sqlite, syslog-ng
%if 0%{?suse_version} == 0 || %suse_version <= 1130
Requires:       ruby-dbus
Requires:       rubygem-ruby-dbus
Requires:       rubygem-webyast-rake-tasks, rubygem-http_accept_language
Requires:       yast2-dbus-server
# 634404
Recommends:     logrotate
PreReq:         PolicyKit, PackageKit, rubygem-rake, rubygem-sqlite3
PreReq:         rubygem-rails-2_3 >= 2.3.4
PreReq:         rubygem-rpam, rubygem-polkit, rubygem-gettext_rails
PreReq:         yast2-runlevel
License:        LGPLv2.1
Group:          Productivity/Networking/Web/Utilities
AutoReqProv:    on
Version:        0.2.11
Release:        1
Summary:        WebYaST - base components for rest service
Source:         www.tar.bz2
Source1:        webyastPermissionsService.rb
Source2:        webyast.permissions.conf
Source3:        webyast.permissions.service.service
Source4:        org.opensuse.yast.permissions.policy
Source5:        grantwebyastrights
Source6:        yast_user_roles
Source9:        yastws
Source10:       webyast
Source12:       nginx.conf

BuildRoot:      %{_tmppath}/%{name}-%{version}-build
BuildRequires:  pkg-config ruby rubygem-mocha
# if we run the tests during build, we need most of Requires here too,
# except for deployment specific stuff
BuildRequires:  rubygem-restility rubygem-webyast-rake-tasks
BuildRequires:  dbus-1 sqlite yast2-core yast2-dbus-server
%if 0%{?suse_version} == 0 || %suse_version <= 1130
BuildRequires:  ruby-dbus
BuildRequires:  rubygem-ruby-dbus
BuildRequires:  PackageKit PolicyKit rubygem-sqlite3
BuildRequires:  rubygem-rails-2_3 >= 2.3.4
BuildRequires:  rubygem-polkit rubygem-rpam
# the testsuite is run during build
BuildRequires:  rubygem-mocha rubygem-test-unit
BuildRequires:  nginx-passenger

# This is for Hudson (build service) to setup the build env correctly
%if 0
BuildRequires:  rubygem-test-unit
BuildRequires:  rubygem-rcov >=

# we do not necessarily need any UI in case of WebYaST
Provides:       yast2_ui
Provides:       yast2_ui_pkg

# rpmlint warns about file duplicates, this should take care but
# doesn't build (?!)
#%if 0%{?suse_version} > 1020
#BuildRequires:  fdupes

BuildArch:      noarch

%package testsuite
License:        LGPLv2.1
Group:          Productivity/Networking/Web/Utilities
Requires:       webyast-base-ws = %{version}
Summary:        Testsuite for webyast-base-ws package

%define pkg_home /var/lib/%{webyast_ws_user}

WebYaST - Core components for REST based interface to system manipulation.
    Duncan Mac-Vicar Prett <>
    Klaus Kaempf <>
    Bjoern Geuken <>
    Stefan Schubert <>

%description testsuite
Testsuite for core WebYaST webservice package.

%setup -q -n www


# run the testsuite
RAILS_ENV=test rake db:migrate
RAILS_ENV=test $RPM_BUILD_ROOT%{webyast_ws_dir}/test/dbus-launch-simple rake test



# Install all web and frontend parts.
mkdir -p $RPM_BUILD_ROOT%{webyast_ws_dir}/log/
cp -a * $RPM_BUILD_ROOT%{webyast_ws_dir}/
rm -f $RPM_BUILD_ROOT%{webyast_ws_dir}/log/*
rm -f $RPM_BUILD_ROOT%{webyast_ws_dir}/COPYING
touch $RPM_BUILD_ROOT%{webyast_ws_dir}/db/schema.rb

%{__install} -d -m 0755                            \
    %{buildroot}%{pkg_home}/sockets/               \
    %{buildroot}%{pkg_home}/cache/                 \
    %{buildroot}%{_sbindir}                        \
# init script
%{__install} -D -m 0755 %SOURCE9 \
%{__ln_s} -f %{_sysconfdir}/init.d/%{webyast_ws_service} %{buildroot}%{_sbindir}/rc%{webyast_ws_service}

# configure nginx web service
mkdir -p $RPM_BUILD_ROOT/etc/yastws/
install -m 0644 %SOURCE12 $RPM_BUILD_ROOT/etc/yastws/
# create symlinks to nginx config files
ln -s /etc/nginx/fastcgi.conf $RPM_BUILD_ROOT/etc/yastws
ln -s /etc/nginx/fastcgi_params $RPM_BUILD_ROOT/etc/yastws
ln -s /etc/nginx/koi-utf $RPM_BUILD_ROOT/etc/yastws
ln -s /etc/nginx/koi-win $RPM_BUILD_ROOT/etc/yastws
ln -s /etc/nginx/mime.types $RPM_BUILD_ROOT/etc/yastws
ln -s /etc/nginx/scgi_params $RPM_BUILD_ROOT/etc/yastws
ln -s /etc/nginx/uwsgi_params $RPM_BUILD_ROOT/etc/yastws
ln -s /etc/nginx/win-utf $RPM_BUILD_ROOT/etc/yastws

# Policies
mkdir -p $RPM_BUILD_ROOT/usr/share/PolicyKit/policy
install -m 0644 %SOURCE4 $RPM_BUILD_ROOT/usr/share/PolicyKit/policy/
install -m 0644 %SOURCE6 $RPM_BUILD_ROOT/etc/
install -m 0555 %SOURCE5 $RPM_BUILD_ROOT/usr/sbin/

# firewall service definition, bnc#545627
mkdir -p $RPM_BUILD_ROOT/etc/sysconfig/SuSEfirewall2.d/services
install -m 0644 %SOURCE10 $RPM_BUILD_ROOT/etc/sysconfig/SuSEfirewall2.d/services

# logrotate configuration bnc#634404
mkdir $RPM_BUILD_ROOT/etc/logrotate.d
install -m 0644 %SOURCE11 $RPM_BUILD_ROOT/etc/logrotate.d

#  create yastwsdirs (config, var and data)
mkdir -p $RPM_BUILD_ROOT/etc/webyast
mkdir -p $RPM_BUILD_ROOT/var/lib/yastws
mkdir -p $RPM_BUILD_ROOT/usr/share/yastws

#  create empty tmp directory
mkdir -p $RPM_BUILD_ROOT%{webyast_ws_dir}/tmp
mkdir -p $RPM_BUILD_ROOT%{webyast_ws_dir}/tmp/cache
mkdir -p $RPM_BUILD_ROOT%{webyast_ws_dir}/tmp/pids
mkdir -p $RPM_BUILD_ROOT%{webyast_ws_dir}/tmp/sessions
mkdir -p $RPM_BUILD_ROOT%{webyast_ws_dir}/tmp/sockets

# install permissions service
mkdir -p $RPM_BUILD_ROOT/usr/sbin/
install -m 0500 %SOURCE1 $RPM_BUILD_ROOT/usr/sbin/
mkdir -p $RPM_BUILD_ROOT/etc/dbus-1/system.d/
install -m 0644 %SOURCE2 $RPM_BUILD_ROOT/etc/dbus-1/system.d/
mkdir -p $RPM_BUILD_ROOT/usr/share/dbus-1/system-services/
install -m 0444 %SOURCE3 $RPM_BUILD_ROOT/usr/share/dbus-1/system-services/

#create dummy update-script
mkdir -p %buildroot/var/adm/update-scripts
touch %buildroot/var/adm/update-scripts/%name-%version-%release-1





# e.g. adding user
/usr/sbin/groupadd -r %{webyast_ws_user} &>/dev/null ||:
/usr/sbin/useradd  -g %{webyast_ws_user} -s /bin/false -r -c "User for YaST-Webservice" -d %{pkg_home} %{webyast_ws_user} &>/dev/null ||:

# services will not be restarted correctly if
# the package name will changed while the update
# So the service will be restarted by an update-script
# which will be called AFTER the installation
if /bin/rpm -q yast2-webservice > /dev/null ; then
  echo "renaming yast2-webservice to webyast-base-ws"
  if /sbin/yast runlevel summary service=yastws 2>&1|grep " 3 "|grep yastws >/dev/null ; then
    echo "yastws is inserted into the runlevel"
    echo "#!/bin/sh" > %name-%version-%release-1
    echo "/sbin/yast runlevel add service=yastws" >> %name-%version-%release-1
    echo "/usr/sbin/rcyastws restart" >> %name-%version-%release-1
    if /usr/sbin/rcyastws status > /dev/null ; then
      echo "yastws is running"
      echo "#!/bin/sh" > %name-%version-%release-1
      echo "/usr/sbin/rcyastws restart" >> %name-%version-%release-1
  if [ -f %name-%version-%release-1 ] ; then
    install -D -m 755 %name-%version-%release-1 /var/adm/update-scripts
    rm %name-%version-%release-1
    echo "Please check the service runlevels and restart WebYaST service with \"rcyastws restart\" if the update has not been called with zypper,yast or packagekit"
exit 0


%fillup_and_insserv %{webyast_ws_service}
#granting permissions for yastws
if [ `/usr/bin/polkit-auth --user %{webyast_ws_user} | grep -c "org.freedesktop.packagekit.system-update"` -eq 0 ]; then
  # FIXME: remove ||: (don't hide errors), has to be correctly implemented for package update...
  /usr/bin/polkit-auth --user %{webyast_ws_user} --grant org.freedesktop.packagekit.system-update > /dev/null ||:
if [ `/usr/bin/polkit-auth --user %{webyast_ws_user} | grep -c ""` -eq 0 ]; then
  # FIXME: remove ||: (don't hide errors), has to be correctly implemented for package update...
  /usr/bin/polkit-auth --user %{webyast_ws_user} --grant > /dev/null ||:
if [ `/usr/bin/polkit-auth --user %{webyast_ws_user} | grep -c "org.opensuse.yast.module-manager.import"` -eq 0 ]; then
  # FIXME: remove ||: (don't hide errors), has to be correctly implemented for package update...
  /usr/bin/polkit-auth --user %{webyast_ws_user} --grant org.opensuse.yast.module-manager.import > /dev/null ||:
# granting all permissions for root 
/usr/sbin/grantwebyastrights --user root --action grant > /dev/null ||:
# create database 
cd %{webyast_ws_dir}
#migrate database
RAILS_ENV=production rake db:migrate
chown -R %{webyast_ws_user}: db
chown -R %{webyast_ws_user}: log
echo "Database is ready"
# patching nginx configuration
if [ -d /usr/lib64 ]; then
  sed -i "s/passenger_root \/usr\/lib/passenger_root \/usr\/lib64/" /etc/yastws/nginx.conf
# try-reload D-Bus config (bnc#635826)
dbus-send --print-reply --system --dest=org.freedesktop.DBus / org.freedesktop.DBus.ReloadConfig >/dev/null ||:


%stop_on_removal %{webyast_ws_service}


%restart_on_update %{webyast_ws_service}

# restart yastws on nginx update (bnc#559534)

%triggerin -- nginx
%restart_on_update %{webyast_ws_service}


#this /etc/yastws is for ligght conf for yastws
%dir /etc/yastws
%dir %{webyast_ws_dir}
%dir %{_datadir}/PolicyKit
%dir %{_datadir}/PolicyKit/policy
%attr(-,%{webyast_ws_user},%{webyast_ws_user}) %dir %{pkg_home}
%attr(-,%{webyast_ws_user},%{webyast_ws_user}) %dir %{pkg_home}/sockets
%attr(-,%{webyast_ws_user},%{webyast_ws_user}) %dir %{pkg_home}/cache
%attr(-,%{webyast_ws_user},%{webyast_ws_user}) %dir %{_var}/log/%{webyast_ws_user}

#logrotate configuration file
%config(noreplace) /etc/logrotate.d/

#this /etc/webyast is for webyast configuration files
%dir /etc/webyast/
%dir %{_datadir}/yastws
%dir %attr(-,%{webyast_ws_user},root) /var/lib/yastws
%dir %{webyast_ws_dir}/db
%ghost %{webyast_ws_dir}/db/schema.rb
%dir %{webyast_ws_dir}/config
#also users can run granting script, as permissions is handled by policyKit right for granting permissions
%attr(555,root,root) /usr/sbin/grantwebyastrights
%attr(755,root,root) %{webyast_ws_dir}/
%attr(500,root,root) /usr/sbin/webyastPermissionsService.rb
%attr(444,root,root) /usr/share/dbus-1/system-services/webyast.permissions.service.service
%attr(644,root,root) %config /etc/dbus-1/system.d/webyast.permissions.conf
%doc %{webyast_ws_dir}/README
%attr(-,%{webyast_ws_user},%{webyast_ws_user}) %{webyast_ws_dir}/log
%attr(-,%{webyast_ws_user},%{webyast_ws_user}) %{webyast_ws_dir}/tmp
#nginx stuff
%config(noreplace) /etc/yastws/nginx.conf
%config /etc/yastws/fastcgi.conf
%config /etc/yastws/fastcgi_params
%config /etc/yastws/koi-utf
%config /etc/yastws/koi-win
%config /etc/yastws/mime.types
%config /etc/yastws/scgi_params
%config /etc/yastws/uwsgi_params
%config /etc/yastws/win-utf

%config /etc/sysconfig/SuSEfirewall2.d/services/webyast
%config /usr/share/PolicyKit/policy/org.opensuse.yast.permissions.policy
%config %{webyast_ws_dir}/config/environment.rb
%config(noreplace) /etc/yast_user_roles
%config %{_sysconfdir}/init.d/%{webyast_ws_service}
%ghost %attr(755,root,root) /var/adm/update-scripts/%name-%version-%release-1

%files testsuite