Sun Nov 23 02:00:48 2008 UTC ()
On NetBSD, install a default policy that allows password-less authentication
for root, password authentication for users in group wheel, and deny access
to all others.


(jmcneill)
diff -r1.1.1.1 -r1.2 pkgsrc/security/policykit/Makefile
diff -r0 -r1.1 pkgsrc/security/policykit/files/PolicyKit.conf.NetBSD
cvs diff -r1.1.1.1 -r1.2 pkgsrc/security/policykit/Makefile (expand / switch to unified diff)

--- pkgsrc/security/policykit/Makefile 2008/11/22 03:33:38 1.1.1.1
+++ pkgsrc/security/policykit/Makefile 2008/11/23 02:00:48 1.2
@@ -1,19 +1,20 @@ @@ -1,19 +1,20 @@
1# $NetBSD: Makefile,v 1.1.1.1 2008/11/22 03:33:38 jmcneill Exp $ 1# $NetBSD: Makefile,v 1.2 2008/11/23 02:00:48 jmcneill Exp $
2# 2#
3 3
4POLICYKIT_VER= 0.9 4POLICYKIT_VER= 0.9
5DISTNAME= PolicyKit-${POLICYKIT_VER} 5DISTNAME= PolicyKit-${POLICYKIT_VER}
6PKGNAME= policykit-${POLICYKIT_VER} 6PKGNAME= policykit-${POLICYKIT_VER}
 7PKGREVISION= 1
7CATEGORIES= security 8CATEGORIES= security
8MASTER_SITES= http://hal.freedesktop.org/releases/ 9MASTER_SITES= http://hal.freedesktop.org/releases/
9 10
10MAINTAINER= jmcneill@NetBSD.org 11MAINTAINER= jmcneill@NetBSD.org
11HOMEPAGE= http://hal.freedesktop.org/ 12HOMEPAGE= http://hal.freedesktop.org/
12COMMENT= Framework for managing admin policies and privileges 13COMMENT= Framework for managing admin policies and privileges
13 14
14PKG_SYSCONFSUBDIR= PolicyKit 15PKG_SYSCONFSUBDIR= PolicyKit
15 16
16EGDIR= ${PREFIX}/share/examples/policykit 17EGDIR= ${PREFIX}/share/examples/policykit
17CONF_FILES+= ${EGDIR}/PolicyKit.conf ${PKG_SYSCONFDIR}/PolicyKit.conf 18CONF_FILES+= ${EGDIR}/PolicyKit.conf ${PKG_SYSCONFDIR}/PolicyKit.conf
18CONF_FILES+= ${EGDIR}/org.freedesktop.PolicyKit.conf ${PKG_SYSCONFBASE}/dbus-1/system.d/org.freedesktop.PolicyKit.conf 19CONF_FILES+= ${EGDIR}/org.freedesktop.PolicyKit.conf ${PKG_SYSCONFBASE}/dbus-1/system.d/org.freedesktop.PolicyKit.conf
19#CONF_FILES+= ${EGDIR}/polkit ${PKG_SYSCONFBASE}/pam.d/polkit 20#CONF_FILES+= ${EGDIR}/polkit ${PKG_SYSCONFBASE}/pam.d/polkit
@@ -30,20 +31,27 @@ USE_LIBTOOL= YES @@ -30,20 +31,27 @@ USE_LIBTOOL= YES
30 31
31POLICYKIT_USER?= polkit 32POLICYKIT_USER?= polkit
32POLICYKIT_GROUP?= polkit 33POLICYKIT_GROUP?= polkit
33PKG_GROUPS= ${POLICYKIT_GROUP} 34PKG_GROUPS= ${POLICYKIT_GROUP}
34PKG_USERS= ${POLICYKIT_USER}:${POLICYKIT_GROUP} 35PKG_USERS= ${POLICYKIT_USER}:${POLICYKIT_GROUP}
35PKG_GROUPS_VARS+= POLICYKIT_GROUP 36PKG_GROUPS_VARS+= POLICYKIT_GROUP
36PKG_USERS_VARS+= POLICYKIT_USER 37PKG_USERS_VARS+= POLICYKIT_USER
37 38
38CONFIGURE_ARGS+= --sysconfdir=${PKG_SYSCONFBASE:Q} 39CONFIGURE_ARGS+= --sysconfdir=${PKG_SYSCONFBASE:Q}
39CONFIGURE_ARGS+= --localstatedir=${VARBASE} 40CONFIGURE_ARGS+= --localstatedir=${VARBASE}
40CONFIGURE_ARGS+= --with-polkit-user=${POLICYKIT_USER} 41CONFIGURE_ARGS+= --with-polkit-user=${POLICYKIT_USER}
41CONFIGURE_ARGS+= --with-polkit-group=${POLICYKIT_GROUP} 42CONFIGURE_ARGS+= --with-polkit-group=${POLICYKIT_GROUP}
42 43
 44.include "../../mk/bsd.prefs.mk"
 45
 46.if ${OPSYS} == "NetBSD"
 47post-install:
 48 ${INSTALL_DATA} ${FILESDIR}/PolicyKit.conf.NetBSD ${EGDIR}/PolicyKit.conf
 49.endif
 50
43.include "../../devel/gettext-lib/buildlink3.mk" 51.include "../../devel/gettext-lib/buildlink3.mk"
44.include "../../textproc/libxml2/buildlink3.mk" 52.include "../../textproc/libxml2/buildlink3.mk"
45.include "../../textproc/xmlcatmgr/buildlink3.mk" 53.include "../../textproc/xmlcatmgr/buildlink3.mk"
46.include "../../sysutils/dbus/buildlink3.mk" 54.include "../../sysutils/dbus/buildlink3.mk"
47.include "../../sysutils/dbus-glib/buildlink3.mk" 55.include "../../sysutils/dbus-glib/buildlink3.mk"
48.include "../../mk/pam.buildlink3.mk" 56.include "../../mk/pam.buildlink3.mk"
49.include "../../mk/bsd.pkg.mk" 57.include "../../mk/bsd.pkg.mk"
File Added: pkgsrc/security/policykit/files/PolicyKit.conf.NetBSD
<?xml version="1.0" encoding="UTF-8"?> <!-- -*- XML -*- -->

<!DOCTYPE pkconfig PUBLIC "-//freedesktop//DTD PolicyKit Configuration 1.0//EN"
"http://hal.freedesktop.org/releases/PolicyKit/1.0/config.dtd">

<!-- See the manual page PolicyKit.conf(5) for file format -->

<config version="0.1">
	<match user="root">
		<return result="yes"/>
	</match>
	<define_admin_auth group="wheel"/>
</config>