git: 9507308f89e5 - main - www/mod_auth_mellon: Add another key block to generated metadata for encryption

From: Ryan Steinmetz <zi_at_FreeBSD.org>
Date: Wed, 02 Nov 2022 11:59:23 UTC 
The branch main has been updated by zi:

URL: https://cgit.FreeBSD.org/ports/commit/?id=9507308f89e58d1a6a2b39da5278aa0290d4e276

commit 9507308f89e58d1a6a2b39da5278aa0290d4e276
Author:     Ryan Steinmetz <zi@FreeBSD.org>
AuthorDate: 2022-11-02 11:58:12 +0000
Commit:     Ryan Steinmetz <zi@FreeBSD.org>
CommitDate: 2022-11-02 11:59:19 +0000

    www/mod_auth_mellon: Add another key block to generated metadata for encryption
    
    Bump PORTREVISION
---
 www/mod_auth_mellon/Makefile                             |  1 +
 .../files/patch-mellon__create__metadata.sh              | 16 ++++++++++++++++
 2 files changed, 17 insertions(+)

diff --git a/www/mod_auth_mellon/Makefile b/www/mod_auth_mellon/Makefile
index fa1df821885f..4df20ffa0317 100644
--- a/www/mod_auth_mellon/Makefile
+++ b/www/mod_auth_mellon/Makefile
@@ -1,5 +1,6 @@
 PORTNAME=	mod_auth_mellon
 PORTVERSION=	0.18.0
+PORTREVISION=	1
 CATEGORIES=	www
 PKGNAMEPREFIX=	${APACHE_PKGNAMEPREFIX}
 DISTVERSIONPREFIX=	v
diff --git a/www/mod_auth_mellon/files/patch-mellon__create__metadata.sh b/www/mod_auth_mellon/files/patch-mellon__create__metadata.sh
new file mode 100644
index 000000000000..795822006440
--- /dev/null
+++ b/www/mod_auth_mellon/files/patch-mellon__create__metadata.sh
@@ -0,0 +1,16 @@
+--- mellon_create_metadata.sh.orig	2022-11-02 11:48:53 UTC
++++ mellon_create_metadata.sh
+@@ -75,6 +75,13 @@ CERT="$(grep -v '^-----' "$OUTFILE.cert")"
+ cat >"$OUTFILE.xml" <<EOF
+ <EntityDescriptor entityID="$ENTITYID" xmlns="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
+   <SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol" AuthnRequestsSigned="true">
++    <KeyDescriptor use="encryption">
++      <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
++        <ds:X509Data>
++          <ds:X509Certificate>$CERT</ds:X509Certificate>
++        </ds:X509Data>
++      </ds:KeyInfo>
++    </KeyDescriptor>
+     <KeyDescriptor use="signing">
+       <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
+         <ds:X509Data>