<pre style='margin:0'>
Renee Otten (reneeotten) pushed a commit to branch master
in repository macports-ports.

</pre>
<p><a href="https://github.com/macports/macports-ports/commit/189323150ce36320903ba8a20df3a51633b9016f">https://github.com/macports/macports-ports/commit/189323150ce36320903ba8a20df3a51633b9016f</a></p>
<pre style="white-space: pre; background: #F8F8F8"><span style='display:block; white-space:pre;color:#808000;'>commit 189323150ce36320903ba8a20df3a51633b9016f
</span>Author: Steven Thomas Smith <s.t.smith@ieee.org>
AuthorDate: Wed May 13 10:59:42 2020 -0400

<span style='display:block; white-space:pre;color:#404040;'>    dovecot: Add +apns variant notes
</span><span style='display:block; white-space:pre;color:#404040;'>    
</span><span style='display:block; white-space:pre;color:#404040;'>    * Improve notes for APNS certificate updates
</span>---
 mail/dovecot/Portfile | 27 ++++++++++++++++++---------
 1 file changed, 18 insertions(+), 9 deletions(-)

<span style='display:block; white-space:pre;color:#808080;'>diff --git a/mail/dovecot/Portfile b/mail/dovecot/Portfile
</span><span style='display:block; white-space:pre;color:#808080;'>index c569a22..2608dbf 100644
</span><span style='display:block; white-space:pre;background:#e0e0ff;'>--- a/mail/dovecot/Portfile
</span><span style='display:block; white-space:pre;background:#e0e0ff;'>+++ b/mail/dovecot/Portfile
</span><span style='display:block; white-space:pre;background:#e0e0e0;'>@@ -215,22 +215,31 @@ if {${name} eq ${subport}} {
</span> 
          1. Acquire APNS Mail certificates from a (virtual) macOS\
             High Sierra 10.13 and Server.app version 5.6. Export\
<span style='display:block; white-space:pre;background:#ffe0e0;'>-            the certificates from the Keychain into the file\
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>-            com.apple.servermgrd.apns.mail.p12 . *Note*: APNS Mail\
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>-            certificate creation is deprecated on Server.app version 5.7+.
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+            the APNS certificates and keys from the Keychain into the\
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+            files com.apple.servermgrd.apns.mail.cer and\
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+            com.apple.servermgrd.apns.mail.key.p12. APNS certificates appear\
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+            separately with names APSP:<UUID> that correspond to the\
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+            certificate's User ID field, com.apple.mail.XServer.<UUID>.\
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+            APNS keys are simply named com.apple.servermgrd.apns.mail.\
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+            *Note*: APNS Mail certificate creation is deprecated on\
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+            Server.app version 5.7+.
</span> 
          2. Convert the APNS Mail certificates to PEM files:
 
<span style='display:block; white-space:pre;background:#ffe0e0;'>-                openssl pkcs12 -in com.apple.servermgrd.apns.mail.p12  \\
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>-                    -clcerts -nokeys | sed '/BEGIN CERTIFICATE/,\$!d'   \\
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+                openssl x509 -inform der -in com.apple.servermgrd.apns.mail.cer  \\
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+                    | sed '/BEGIN CERTIFICATE/,\$!d'   \\
</span>                 > com.apple.mail.cert.pem
<span style='display:block; white-space:pre;background:#ffe0e0;'>-                sudo install -m 0644 -o ${default_internal_user} -g ${default_login_user} \\
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>-                    com.apple.mail.cert.pem ${prefix}/etc/dovecot-apns
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>-                openssl pkcs12 -in com.apple.servermgrd.apns.mail.p12  \\
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+                openssl pkcs12 -in com.apple.servermgrd.apns.mail.key.p12  \\
</span>                     -nodes -nocerts | sed '/BEGIN PRIVATE KEY/,\$!d'    \\
                 > com.apple.mail.key.pem
<span style='display:block; white-space:pre;background:#e0ffe0;'>+                # verify that the certificate and key match:
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+                openssl x509 -noout -modulus -in com.apple.mail.cert.pem \\
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+                | openssl sha1
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+                openssl rsa -noout -modulus -in com.apple.mail.key.pem \\
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+                | openssl sha1
</span>                 sudo install -m 0640 -o ${default_internal_user} -g ${default_login_user} \\
<span style='display:block; white-space:pre;background:#ffe0e0;'>-                    com.apple.mail.key.pem ${prefix}/etc/dovecot-apns
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+                    com.apple.mail.cert.pem com.apple.mail.key.pem \\
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+                    ${prefix}/etc/dovecot-apns
</span> 
          3. Configure dovecot for APNS:
 
</pre><pre style='margin:0'>

</pre>