2021-06-20 23:12:11 +02:00
|
|
|
{ lib, fetchFromGitHub, cacert, openssl, nixosTests
|
2022-10-06 11:59:35 +02:00
|
|
|
, python39, fetchpatch
|
2020-04-21 13:35:41 +02:00
|
|
|
}:
|
|
|
|
|
2021-06-20 23:12:11 +02:00
|
|
|
let
|
2022-06-06 19:30:09 +02:00
|
|
|
python3' = python39.override {
|
2021-06-20 23:12:11 +02:00
|
|
|
packageOverrides = self: super: {
|
|
|
|
sqlalchemy = super.sqlalchemy.overridePythonAttrs (oldAttrs: rec {
|
|
|
|
version = "1.3.24";
|
|
|
|
src = oldAttrs.src.override {
|
|
|
|
inherit version;
|
2022-05-03 07:19:38 +02:00
|
|
|
hash = "sha256-67t3fL+TEjWbiXv4G6ANrg9ctp+6KhgmXcwYpvXvdRk=";
|
2021-06-20 23:12:11 +02:00
|
|
|
};
|
2022-04-01 14:32:43 +02:00
|
|
|
doCheck = false;
|
|
|
|
});
|
|
|
|
# fails with `no tests ran in 1.75s`
|
|
|
|
alembic = super.alembic.overridePythonAttrs (lib.const {
|
|
|
|
doCheck = false;
|
2021-06-20 23:12:11 +02:00
|
|
|
});
|
2021-07-22 14:09:33 +02:00
|
|
|
flask_migrate = super.flask_migrate.overridePythonAttrs (oldAttrs: rec {
|
|
|
|
version = "2.7.0";
|
2022-06-06 19:30:09 +02:00
|
|
|
src = self.fetchPypi {
|
2021-09-18 14:26:01 +02:00
|
|
|
pname = "Flask-Migrate";
|
2021-07-22 14:09:33 +02:00
|
|
|
inherit version;
|
|
|
|
sha256 = "ae2f05671588762dd83a21d8b18c51fe355e86783e24594995ff8d7380dffe38";
|
|
|
|
};
|
|
|
|
});
|
2022-04-01 14:32:43 +02:00
|
|
|
# Taken from by https://github.com/NixOS/nixpkgs/pull/173090/commits/d2c0c7eb4cc91beb0a1adbaf13abc0a526a21708
|
|
|
|
werkzeug = super.werkzeug.overridePythonAttrs (old: rec {
|
|
|
|
version = "1.0.1";
|
|
|
|
src = old.src.override {
|
|
|
|
inherit version;
|
|
|
|
sha256 = "6c80b1e5ad3665290ea39320b91e1be1e0d5f60652b964a3070216de83d2e47c";
|
|
|
|
};
|
|
|
|
checkInputs = old.checkInputs ++ (with self; [
|
|
|
|
requests
|
|
|
|
]);
|
2022-09-18 01:34:26 +02:00
|
|
|
doCheck = false;
|
2021-11-26 16:22:30 +01:00
|
|
|
});
|
2022-04-01 14:32:43 +02:00
|
|
|
# Required by flask-1.1
|
|
|
|
jinja2 = super.jinja2.overridePythonAttrs (old: rec {
|
|
|
|
version = "2.11.3";
|
|
|
|
src = old.src.override {
|
2021-12-10 03:47:28 +01:00
|
|
|
inherit version;
|
2022-04-01 14:32:43 +02:00
|
|
|
sha256 = "sha256-ptWEM94K6AA0fKsfowQ867q+i6qdKeZo8cdoy4ejM8Y=";
|
2021-12-10 03:47:28 +01:00
|
|
|
};
|
2022-04-01 14:32:43 +02:00
|
|
|
});
|
|
|
|
# Required by jinja2-2.11.3
|
|
|
|
markupsafe = super.markupsafe.overridePythonAttrs (old: rec {
|
|
|
|
version = "2.0.1";
|
|
|
|
src = old.src.override {
|
|
|
|
inherit version;
|
|
|
|
sha256 = "sha256-WUxngH+xYjizDES99082wCzfItHIzake+KDtjav1Ygo=";
|
|
|
|
};
|
|
|
|
});
|
|
|
|
itsdangerous = super.itsdangerous.overridePythonAttrs (old: rec {
|
2022-06-06 20:10:32 +02:00
|
|
|
version = "1.1.0";
|
|
|
|
src = old.src.override {
|
|
|
|
inherit version;
|
|
|
|
sha256 = "321b033d07f2a4136d3ec762eac9f16a10ccd60f53c0c91af90217ace7ba1f19";
|
|
|
|
};
|
|
|
|
});
|
|
|
|
flask = super.flask.overridePythonAttrs (old: rec {
|
|
|
|
version = "1.1.4";
|
2022-04-01 14:32:43 +02:00
|
|
|
src = old.src.override {
|
|
|
|
inherit version;
|
2022-06-06 20:10:32 +02:00
|
|
|
sha256 = "0fbeb6180d383a9186d0d6ed954e0042ad9f18e0e8de088b2b419d526927d196";
|
2022-04-01 14:32:43 +02:00
|
|
|
};
|
|
|
|
});
|
|
|
|
sqlsoup = super.sqlsoup.overrideAttrs ({ meta ? {}, ... }: {
|
|
|
|
meta = meta // { broken = false; };
|
2021-12-10 03:47:28 +01:00
|
|
|
});
|
2022-06-06 20:10:32 +02:00
|
|
|
click = super.click.overridePythonAttrs (old: rec {
|
|
|
|
version = "7.1.2";
|
|
|
|
src = old.src.override {
|
|
|
|
inherit version;
|
|
|
|
sha256 = "d2b5255c7c6349bc1bd1e59e08cd12acbbd63ce649f2588755783aa94dfb6b1a";
|
|
|
|
};
|
|
|
|
});
|
2022-09-18 01:34:26 +02:00
|
|
|
# Now requires `lingua` as check input that requires a newer `click`,
|
|
|
|
# however `click-7` is needed by the older flask we need here. Since it's just
|
|
|
|
# for the test-suite apparently, let's skip it for now.
|
|
|
|
Mako = super.Mako.overridePythonAttrs (lib.const {
|
|
|
|
checkInputs = [];
|
|
|
|
doCheck = false;
|
|
|
|
});
|
2021-06-20 23:12:11 +02:00
|
|
|
};
|
|
|
|
};
|
|
|
|
in
|
|
|
|
python3'.pkgs.buildPythonPackage rec {
|
2020-04-21 13:35:41 +02:00
|
|
|
pname = "privacyIDEA";
|
2022-10-27 22:01:42 +02:00
|
|
|
version = "3.7.4";
|
2020-04-21 13:35:41 +02:00
|
|
|
|
|
|
|
src = fetchFromGitHub {
|
|
|
|
owner = pname;
|
|
|
|
repo = pname;
|
|
|
|
rev = "v${version}";
|
2022-10-27 22:01:42 +02:00
|
|
|
sha256 = "sha256-QoVL6WJjX6+sN5S/iqV3kcfQ5fWTXkTnf6NpZcw3bGo=";
|
2021-03-19 21:11:49 +01:00
|
|
|
fetchSubmodules = true;
|
2020-04-21 13:35:41 +02:00
|
|
|
};
|
|
|
|
|
2021-06-20 23:12:11 +02:00
|
|
|
propagatedBuildInputs = with python3'.pkgs; [
|
2020-04-21 13:35:41 +02:00
|
|
|
cryptography pyrad pymysql python-dateutil flask-versioned flask_script
|
2021-12-10 03:47:28 +01:00
|
|
|
defusedxml croniter flask_migrate pyjwt configobj sqlsoup pillow
|
2020-04-21 13:35:41 +02:00
|
|
|
python-gnupg passlib pyopenssl beautifulsoup4 smpplib flask-babel
|
|
|
|
ldap3 huey pyyaml qrcode oauth2client requests lxml cbor2 psycopg2
|
2022-04-01 14:32:43 +02:00
|
|
|
pydash ecdsa google-auth importlib-metadata argon2-cffi bcrypt
|
2020-04-21 13:35:41 +02:00
|
|
|
];
|
|
|
|
|
2022-10-06 11:59:35 +02:00
|
|
|
patches = [
|
|
|
|
# Apply https://github.com/privacyidea/privacyidea/pull/3304, fixes
|
|
|
|
# `Exceeds the limit (4300) for integer string conversion` in the tests,
|
|
|
|
# see https://hydra.nixos.org/build/192932057
|
|
|
|
(fetchpatch {
|
|
|
|
url = "https://github.com/privacyidea/privacyidea/commit/0e28f36c0b3291a361669f4a3a77c294f4564475.patch";
|
|
|
|
sha256 = "sha256-QqcO8bkt+I2JKce/xk2ZhzEaLZ3E4uZ4x5W9Kk0pMQQ=";
|
|
|
|
})
|
|
|
|
];
|
|
|
|
|
2021-03-19 21:11:49 +01:00
|
|
|
passthru.tests = { inherit (nixosTests) privacyidea; };
|
|
|
|
|
2021-06-20 23:12:11 +02:00
|
|
|
checkInputs = with python3'.pkgs; [ openssl mock pytestCheckHook responses testfixtures ];
|
2022-09-18 01:34:26 +02:00
|
|
|
preCheck = "export HOME=$(mktemp -d)";
|
|
|
|
postCheck = "unset HOME";
|
2021-03-19 21:11:49 +01:00
|
|
|
disabledTests = [
|
2022-09-18 01:34:26 +02:00
|
|
|
# expects `/home/` to exist, fails with `FileNotFoundError: [Errno 2] No such file or directory: '/home/'`.
|
2021-03-19 21:11:49 +01:00
|
|
|
"test_01_loading_scripts"
|
2022-09-18 01:34:26 +02:00
|
|
|
|
|
|
|
# Tries to connect to `fcm.googleapis.com`.
|
2021-04-02 11:09:55 +02:00
|
|
|
"test_02_api_push_poll"
|
2022-09-18 01:34:26 +02:00
|
|
|
|
|
|
|
# Timezone info not available in build sandbox
|
2021-03-19 21:11:49 +01:00
|
|
|
"test_14_convert_timestamp_to_utc"
|
2022-09-18 01:34:26 +02:00
|
|
|
|
|
|
|
# Fails because of different logger configurations
|
|
|
|
"test_01_create_default_app"
|
|
|
|
"test_03_logging_config_file"
|
|
|
|
"test_04_logging_config_yaml"
|
|
|
|
"test_05_logging_config_broken_yaml"
|
2021-03-19 21:11:49 +01:00
|
|
|
];
|
2020-04-21 13:35:41 +02:00
|
|
|
|
2020-05-08 14:09:10 +02:00
|
|
|
pythonImportsCheck = [ "privacyidea" ];
|
|
|
|
|
2020-04-21 13:35:41 +02:00
|
|
|
postPatch = ''
|
2022-09-18 01:34:26 +02:00
|
|
|
patchShebangs tests/testdata/scripts
|
2020-04-21 13:35:41 +02:00
|
|
|
substituteInPlace privacyidea/lib/resolvers/LDAPIdResolver.py --replace \
|
|
|
|
"/etc/privacyidea/ldap-ca.crt" \
|
|
|
|
"${cacert}/etc/ssl/certs/ca-bundle.crt"
|
|
|
|
'';
|
|
|
|
|
|
|
|
postInstall = ''
|
2021-06-20 23:12:11 +02:00
|
|
|
rm -r $out/${python3'.sitePackages}/tests
|
2020-04-21 13:35:41 +02:00
|
|
|
'';
|
|
|
|
|
|
|
|
meta = with lib; {
|
|
|
|
description = "Multi factor authentication system (2FA, MFA, OTP Server)";
|
|
|
|
license = licenses.agpl3Plus;
|
|
|
|
homepage = "http://www.privacyidea.org";
|
2021-03-19 21:11:49 +01:00
|
|
|
maintainers = with maintainers; [ globin ma27 ];
|
2020-04-21 13:35:41 +02:00
|
|
|
};
|
|
|
|
}
|