1
0
mirror of https://git.FreeBSD.org/ports.git synced 2024-12-19 03:52:17 +00:00
freebsd-ports/security/modsecurity3-nginx/Makefile
Jochen Neumeister df285b2683 security/modsecurity3-nginx: Update to 1.0.2
Changelog:
	- Fix auditlog in case of internal redirect
	- Fix nginx sends response without headers
	- Fix nginx not clearing body cache
	- Fix config setting not respected: client_body_in_file_only on
	- Fix audit_log not generated for disruptive actions
	- Exit more gracefully if uri length is zero

Sponsored by:	Netzkommune GmbH
2021-10-16 07:44:48 +02:00

92 lines
2.9 KiB
Makefile

PORTNAME= modsecurity3-nginx
DISTVERSION= 1.0.2
PORTREVISION= 0
CATEGORIES= security www
MASTER_SITES= http://nginx.org/download/
DISTFILES= ${_NGINX_DISTNAME}${EXTRACT_SUFX}
MAINTAINER= joneum@FreeBSD.org
COMMENT= Instruction detection and prevention engine / nginx Wrapper
LICENSE= APACHE20
LICENSE_FILE= ${WRKSRC}/LICENSE
BROKEN_armv6= ./configure: error: ngx_http_modsecurity_module requires the ModSecurity library.
LIB_DEPENDS= libmodsecurity.so:security/modsecurity3
USES= compiler:c11
USE_GITHUB= nodefault
GH_TUPLE= SpiderLabs:ModSecurity-nginx:v1.0.1:modsecurity3
HAS_CONFIGURE= yes
# Most arguments should be derived from www/nginx's Makefile to be in sync
CONFIGURE_ARGS+= --prefix=${PREFIX}/etc/nginx \
--with-cc-opt="-I ${LOCALBASE}/include" \
--with-ld-opt="-L ${LOCALBASE}/lib" \
--conf-path=${PREFIX}/etc/nginx.conf \
--sbin-path=${PREFIX}/sbin/nginx \
--pid-path=${_NGINX_RUNDIR}/nginx.pid \
--error-log-path=${_NGINX_ERRORLOG} \
--user=${WWWOWN} --group=${WWWGRP} \
--modules-path=${_MODULESDIR} \
--with-file-aio \
--http-client-body-temp-path=${_NGINX_TMPDIR}/client_body_temp \
--http-fastcgi-temp-path=${_NGINX_TMPDIR}/fastcgi_temp \
--http-proxy-temp-path=${_NGINX_TMPDIR}/proxy_temp \
--http-scgi-temp-path=${_NGINX_TMPDIR}/scgi_temp \
--http-uwsgi-temp-path=${_NGINX_TMPDIR}/uwsgi_temp \
--http-log-path=${_NGINX_ACCESSLOG} \
--with-http_v2_module \
--with-http_addition_module \
--with-http_auth_request_module \
--with-http_dav_module \
--with-http_flv_module \
--with-http_gunzip_module \
--with-http_gzip_static_module \
--with-http_mp4_module \
--with-http_random_index_module \
--with-http_realip_module \
--with-pcre \
--with-http_secure_link_module \
--with-http_slice_module \
--with-http_ssl_module \
--with-http_stub_status_module \
--with-http_sub_module \
--without-mail_imap_module \
--without-mail_pop3_module \
--without-mail_smtp_module \
--with-mail_ssl_module \
--with-stream_ssl_module \
--with-stream_ssl_preread_module \
--with-threads \
--with-mail=dynamic \
--with-stream=dynamic \
--add-dynamic-module=${WRKSRC_modsecurity3}
ALL_TARGET=
WRKSRC= ${WRKDIR}/${_NGINX_DISTNAME}
PLIST_FILES= ${_MODULESDIR}/ngx_http_modsecurity_module.so
# These variables should be derived from www/nginx's Makefile
_MODULESDIR= ${PREFIX}/libexec/nginx
_NGINX_ACCESSLOG= ${_NGINX_LOGDIR}/access.log
_NGINX_ERRORLOG= ${_NGINX_LOGDIR}/error.log
_NGINX_LOGDIR= ${_NGINX_VARDIR}/log/nginx
_NGINX_RUNDIR= ${_NGINX_VARDIR}/run
_NGINX_TMPDIR= ${_NGINX_VARDIR}/tmp/nginx
_NGINX_VARDIR= /var
_NGINX_PORTNAME= nginx
_NGINX_PORTVERSION= 1.20.0
_NGINX_DISTNAME= ${_NGINX_PORTNAME}-${_NGINX_PORTVERSION}
do-install:
@${MKDIR} ${STAGEDIR}${_MODULESDIR}
${INSTALL_PROGRAM} ${WRKSRC}/objs/ngx_http_modsecurity_module.so \
${STAGEDIR}${_MODULESDIR}
.include <bsd.port.mk>