5 changed files with 32 additions and 39 deletions
--- a/e-smith-manager.spec
+++ b/e-smith-manager.spec
@ -4,7 +4,7 @@ Summary: e-smith manager navigation module
 %define name e-smith-manager
 Name: %{name}
 %define version 2.8.0
-%define release 43
+%define release 39
 Version: %{version}
 Release: %{release}%{?dist}
 License: GPL
@ -24,19 +24,6 @@ Provides: server-manager
 AutoReqProv: no

 %changelog
-* Wed Feb 12 2025 Jean-Philippe Pialasse <jpp@koozali.org> 2.8.0-43.sme
- update SME11 EOL date and message [SME: 12915]
-
-* Mon Dec 30 2024 Jean-Philippe Pialasse <jpp@koozali.org> 2.8.0-42.sme
-  add CSP support [SME: 9566]
-
-* Tue Mar 26 2024 Jean-Philippe Pialasse <jpp@koozali.org> 2.8.0-41.sme
- fix systemd service file [SME: 12556]
-
-* Tue Mar 12 2024 Jean-Philippe Pialasse <tests@pialasse.com> 2.8.0-40.sme
- tidy rpm
- add -g flag to gcc in order to get debugsourcefiles.list
-
 * Mon Aug 07 2023 cvs2git.sh aka Brian Read <brianr@koozali.org> 2.8.0-39.sme
 - Roll up patches and move to git repo [SME: 12338]

@ -799,7 +786,7 @@ rm -rf root/var/service

 %build
 perl createlinks
-gcc -g -o root/etc/e-smith/web/functions/wrapper manager.c
+gcc -o root/etc/e-smith/web/functions/wrapper manager.c
 mkdir -p root/home/e-smith/db/navigation
 mkdir -p root/etc/e-smith/web/common/css

@ -822,6 +809,21 @@ mkdir -p root/etc/e-smith/web/panels/manager/{cgi-bin,html}
 mkdir -p root/etc/e-smith/web/panels/password/{cgi-bin,html}
 mkdir -p root/etc/httpd/admin-conf

+mkdir -p root/service
+#mkdir -p root/etc/rc.d/init.d/supervise
+#for service in httpd-admin
+#do
+#  ln -s /var/service/$service root/service/$service
+#  mkdir -p root/var/service/$service/supervise
+#  touch root/var/service/$service/down
+#  if [ -d root/var/service/$service/log ]
+#  then
+#    mkdir -p root/var/service/$service/log/supervise
+#    mkdir -p root/var/log/$service
+#  fi
+#  ln -s ../daemontools root/etc/rc.d/init.d/supervise/$service
+#done
+
 %install
 rm -rf $RPM_BUILD_ROOT
 (cd root ; find . -depth -print | cpio -dump $RPM_BUILD_ROOT)
@ -838,6 +840,12 @@ echo "%doc COPYING" >> %{name}-%{version}-%{release}-filelist
 rm -rf $RPM_BUILD_ROOT

 %pre
+if [ $1 -gt 1 ] ; then
+  if [ -e /var/service/httpd-admin/run ] ; then
+       /usr/bin/sv d httpd-admin
+       /usr/bin/sv d httpd-admin/log
+  fi
+fi
 %preun
 %post
 find /etc/e-smith/web/panels/manager/cgi-bin/ -type f | \
@ -845,6 +853,10 @@ find /etc/e-smith/web/panels/manager/cgi-bin/ -type f | \
    xargs grep -l Persisten | \
    xargs rm -f

+if [ -d /var/service/httpd-admin ] ; then
+   rm -rf /var/service/httpd-admin
+fi
+
 %postun

 %files -f %{name}-%{version}-%{release}-filelist
--- a/root/etc/e-smith/templates/etc/e-smith/web/common/head.tmpl/30FrameSetup01
+++ b/root/etc/e-smith/templates/etc/e-smith/web/common/head.tmpl/30FrameSetup01
@ -42,10 +42,10 @@ EOF
    use POSIX qw(strftime);
    my $curdate = strftime '%Y%m%d', localtime;
    $OUT .= qq(<div class="sme-error"><h5>
-      URGENT NOTICE: As per May 31st 2029, SME Server 11 is obsolete, and potentially INSECURE. NO support will be offered for any issue found with this installed version.
-      Please migrate IMMEDIATELY to Koozali SME Server 12 or higher version. Failure to upgrade may lead to the compromise of this server.
+      URGENT NOTICE: As per June 30th 2024, SME Server 10 is obsolete, and potentially INSECURE. NO support will be offered for any issue found with this installed version.
+      Please migrate IMMEDIATELY to Koozali SME Server 11 or higher version. Failure to upgrade may lead to the compromise of this server.
      </br>Please, consult <a href="https://wiki.koozali.org/SME_Server:Download" target="_blank">https://wiki.koozali.org/SME_Server:Download</a> to get last available version.</h5></div>) 
-      if  ( "$curdate"  >= "20290531");
+      if  ( "$curdate"  >= "20240630");

    $OUT;

--- a/root/etc/e-smith/templates/etc/httpd/conf/httpd.conf/VirtualHosts/27ManagerProxyPass
+++ b/root/etc/e-smith/templates/etc/httpd/conf/httpd.conf/VirtualHosts/27ManagerProxyPass
@ -31,14 +31,6 @@
        } else {
            $OUT .= "        Require ip $localAccess\n";
        }
-
-        # any server-manager script or style added in line should be hashed and added here to run in a modern browser
-        $OUT .= "                   Header set Content-Security-Policy  \"script-src 'self' https://$virtualHost 'unsafe-hashes' "
-        ." 'sha256-bu1Wbll/1+gfjCxVn9czXKc7IhIJRjJgNFdNltH+09c=' 'sha256-MQmv1rIdRtr7sC3167eTWkTNMSq5QzWRPxhOzKUtvKg=' 'sha256-DuDis7gGgnegJBjroiLOJwY+DvfilQsYswIXb6lNE8c=' 'sha256-FengF4xZO+fXC/zBgGGYYPLtc95CEZAk+vS7A9OR64o='  ;"
-        ." style-src 'self' https://$virtualHost 'unsafe-hashes' "
-        ." 'sha256-ABT3Vs4q5dwUnsKaFzA38LnsL3426dj6CkNKRofyqjA=' 'sha256-upqzRUpu+M2pCK19HHLg5oUeQnpEXij9kojuDNdJnGc=' 'sha256-sa1JolVbZz72+sa0pOWp/LBIoZfF9P1N8Gzy5u3C3Qc=' 'sha256-q9xrwNUn7ieRndtLNP/uNCEBKXjzTzvZv1fddtmMK9w=' ;"
-        ." script-src-attr 'self' https://$virtualHost 'unsafe-hashes' 'sha256-QgFUvJuzASZ+WbF57Vn8eQoWvuBJ78nF7YMraPzQVvg=' \"\n"; 
-
        $OUT .= "    </Location>\n";
    }
 }
--- a/root/etc/e-smith/web/functions/navigation
+++ b/root/etc/e-smith/web/functions/navigation
@ -288,18 +288,6 @@ sub showNavigation ($)
    // End script hiding -->
    </script>
    ";
-   print '    
-   <script language="JavaScript" type="text/javascript">
-   <!-- Hide script
-        window.onload = function(){
-          var menuitems = document.getElementsByClassName("item");
-	  var i = menuitems.length;
-	  while (i--)
-	    menuitems[i].addEventListener("click", function(){swapClasses(this.id)});
-	};  
-        // End script hiding -->
-    </script>
-    ';

    foreach my $h (sort {
 	 ($nav{$a}{'WEIGHT'}/$nav{$a}{'COUNT'}) <=>
@ -332,7 +320,7 @@ sub showNavigation ($)
 			     $q->td ({-class => "menu-cell"},
 				     $q->a ({-id => "sme$c",
                                            -class => "item",
-					    #-onClick => "swapClasses(this.id)", #with CSP replaced by eventlistener
+                                            -onClick => "swapClasses('sme$c')",
                                            href => $href, 
                                            target => 'main'}, 
                                        $_->{'DESCRIPTION'})
--- a/root/usr/lib/systemd/system/httpd-admin.service
+++ b/root/usr/lib/systemd/system/httpd-admin.service
@ -6,6 +6,7 @@ Documentation=man:apachectl(8)

 [Service]
 Type=notify
+EnvironmentFile=/etc/sysconfig/httpd
 ExecStartPre=/sbin/e-smith/service-status httpd-admin
 ExecStartPre=/sbin/e-smith/expand-template /etc/httpd/admin-conf/httpd.conf
 ExecStart=/usr/sbin/httpd -f /etc/httpd/admin-conf/httpd.conf -DFOREGROUND