[MacPorts] #41532: igtf-bundle @1.55: new submission
MacPorts
noreply at macports.org
Thu Nov 28 08:17:03 PST 2013
#41532: igtf-bundle @1.55: new submission
------------------------------+----------------------
Reporter: Peter.Danecek@… | Owner: ram@…
Type: submission | Status: assigned
Priority: Normal | Milestone:
Component: ports | Version:
Resolution: | Keywords:
Port: igtf-bundle |
------------------------------+----------------------
Comment (by Peter.Danecek@…):
In conclusion I propose the following for this port:
- move the location of certificates back to `${prefix}/etc/grid-
security/certificates`;
- create a symlink from `${prefix}/share` to `${prefix}/etc/grid-security`
to ensure that all grid/Globus related tools work out-of-the-box, without
having to patch all tools to see `${prefix}/etc/grid-security/certificates
as well;
- make this port depend on `fetch-crl`;
- configure fetch-crl to fetch CRLs for these certificates;
- install auto-fetch launchd service for this certificates (not 100% sure
here); loading this service is delegated to the user itself (as discussed
in ticket #41540 before);
- fetch CRLs on activation (`post-activate`);
- clean up CRLs on deactivation;
The last is a bit problematic to implement. The strategy would be to:
- first deactivate so the certificates disappear;
- run clean-crl to remove all CRLs for missing certificates (this should
probably go into `post-deactivate`);
**But** I assume this would leave the directory `${prefix}/etc/grid-
security/certificate` around even if it is now empty. How to solve this
elegantly, just try to delete the directory? Or is there a way to retry
deactivation now?
--
Ticket URL: <https://trac.macports.org/ticket/41532#comment:22>
MacPorts <http://www.macports.org/>
Ports system for OS X
More information about the macports-tickets
mailing list