File apache2-mod_auth_openidc.spec of Package apache2-mod_auth_openidc.23743

# spec file for package apache2-mod_auth_openidc
# Copyright (c) 2018 SUSE LINUX GmbH, Nuernberg, Germany.
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
# upon. The license for this file, and modifications and additions to the
# file, is the same license as for the pristine package itself (unless the
# license for the pristine package is not an Open Source License, in which
# case the license is the MIT License). An "Open Source License" is a
# license that conforms to the Open Source Definition (Version 1.9)
# published by the Open Source Initiative.

# Please submit bugfixes or comments via

%define apxs %{_sbindir}/apxs2
%define apache_libexecdir %(%{apxs} -q LIBEXECDIR)
Name:           apache2-mod_auth_openidc
Version:        2.3.8
Release:        0
Summary:        Apache2.x module for an OpenID Connect enabled Identity Provider
License:        Apache-2.0
Group:          Productivity/Networking/Web/Servers
Patch0:         apache2-mod_auth_openidc-2.3.8-CVE-2019-14857.patch
Patch1:         apache2-mod_auth_openidc-2.3.8-CVE-2019-20479.patch
Patch2:         fix-CVE-2021-32785.patch
Patch3:         fix-CVE-2021-32786.patch
Patch4:         fix-CVE-2021-32791.patch
Patch5:         fix-CVE-2021-32792-1.patch
Patch6:         fix-CVE-2021-32792-2.patch
Patch7:         fix-CVE-2021-39191.patch
# PATCH-FIX-UPSTREAM bsc#1206441
# Open Redirect in oidc_validate_redirect_url() using tab character
Patch8:         fix-CVE-2022-23527-0.patch
Patch9:         fix-CVE-2022-23527-1.patch
Patch10:        fix-CVE-2022-23527-2.patch
Patch11:        fix-CVE-2022-23527-3.patch
Patch12:        harden-refresh-token-request.patch
BuildRequires:  apache-rpm-macros
BuildRequires:  apache2-devel
BuildRequires:  autoconf
BuildRequires:  automake
%if 0%{?suse_version} >= 1550
BuildRequires:  hiredis-devel
BuildRequires:  libtool
BuildRequires:  pkgconfig
BuildRequires:  pkgconfig(cjose) >= 0.4.1
BuildRequires:  pkgconfig(jansson) >= 2.0
BuildRequires:  pkgconfig(libcurl)
BuildRequires:  pkgconfig(libpcre)
BuildRequires:  pkgconfig(openssl) >= 1.0.1
Requires:       %{apache_mmn}
Requires:       %{apache_suse_maintenance_mmn}

This module enables an Apache 2.x web server to operate as an OpenID Connect Relying Party and/or OAuth 2.0 Resource Server.

%setup -q -n mod_auth_openidc-%{version}
%patch0 -p1
%patch1 -p1
%patch2 -p1
%patch3 -p1
%patch4 -p1
%patch5 -p1
%patch6 -p1
%patch7 -p1
%patch8 -p1
%patch9 -p1
%patch10 -p1
%patch11 -p1
%patch12 -p1

%configure \
%if 0%{?is_opensuse} > 0
  %{?_with_hiredis}    \
  %{?_without_hiredis} \

make %{?_smp_mflags}

install -D -m0755 src/.libs/ %{buildroot}%{apache_libexecdir}/

%dir %{apache_libexecdir}

openSUSE Build Service is sponsored by