# -*- coding: utf-8; mode: tcl; tab-width: 4; indent-tabs-mode: nil; c-basic-offset: 4 -*- vim:fenc=utf-8:ft=tcl:et:sw=4:ts=4:sts=4
# $Id: Portfile 107094 2013-06-18 02:28:18Z scantor@macports.org $

PortSystem          1.0
PortGroup           active_variants 1.1

name                shibboleth
version             2.5.2
categories          security www shibboleth
license             Apache
maintainers         snc scantor
description         Shibboleth Native Service Provider
long_description    The Shibboleth System is a standards based, open source \
                    software package for web single sign-on across or within \
                    organizational boundaries. It allows sites to make \
                    informed authorization decisions for individual access of \
                    protected online resources in a privacy-preserving manner.

homepage            http://shibboleth.net/

platforms           darwin
depends_lib         port:opensaml \
                    port:xmltooling \
                    port:xercesc3 \
                    port:xml-security-c \
                    port:log4shib \
                    port:boost

master_sites        http://shibboleth.net/downloads/service-provider/${version}/
distname            ${name}-sp-${version}
worksrcdir          ${name}-sp-${version}
checksums           rmd160  8b37921bf16488dc4f3890abf09e7cb44c16367f \
                    sha256  1d5c42ea6a6cf5f1ed39101af52a2df2cf7e5e6c086e1081bdf1275f970ba1d5

require_active_variants curl ssl

configure.args      --with-xmltooling=${prefix} \
                    --with-saml=${prefix} \
                    --with-boost=${prefix} \
                    --with-xerces=${prefix} \
                    --with-xmlsec=${prefix}

variant odbc description {enable odbc support} {
        depends_lib-append port:unixODBC
        configure.args-append --enable-odbc
}

destroot.keepdirs ${destroot}${prefix}/var/log/${name} ${destroot}${prefix}/var/log/httpd ${destroot}${prefix}/var/run/${name} ${destroot}${prefix}/var/cache/${name}

destroot.args   NOKEYGEN=1

post-destroot {
        eval file delete [glob ${destroot}${prefix}/etc/${name}/*.logger]
        eval file delete [glob ${destroot}${prefix}/etc/${name}/*.html]
        eval file delete [glob ${destroot}${prefix}/etc/${name}/*.xml]
        eval file delete [glob ${destroot}${prefix}/etc/${name}/shibd-*]
}

post-activate {
    # Make sure initial conf files are present and set up correctly
    set confDir ${prefix}/etc/${name}
    foreach f [glob -tails -directory ${confDir} *.dist] {
        regexp {(.+)\.dist} $f ign destname
        if {![file exists ${confDir}/${destname}]} {
            file copy ${confDir}/${f} ${confDir}/${destname}
        }
    }
    system -W ${prefix}/etc/${name} "./keygen.sh -b"
}

startupitem.create      yes
startupitem.name        shibd
startupitem.executable  ${prefix}/sbin/shibd -F -f -p ${prefix}/var/run/${name}/shibd.pid

livecheck.type          regex
livecheck.url           http://shibboleth.net/downloads/service-provider/latest/
livecheck.regex         ${name}-sp-(\\d+\\.\\d+(\\.\\d+)?)
