Versions Compared

Old Version 38

changes.mady.by.user Scott Cantor

Saved on

compared with

New Version 39

changes.mady.by.user Scott Cantor

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

The following installation procedure will build the Shibboleth 2.x SP and all its dependencies. Completion of the instructions will result in a functional and loaded but unconfigured SP installed under the /opt/local file system tree maintained by the MacPorts system.

Warning

At the present time, the port install on OS X 10.9 (Mavericks) is apparently broken and shibd produces a segfault. It is suggested that you upgrade to Yosemite.

Note
titleApache Versions

At this time, only Apache installations in detectable locations that the configure script can locate automatically are usable. There may be ways to pass explicit options to the configure script using rhe port system, but I haven't come up with any.
In practice this means that the "right" Apache apxs script needs to be in the system path when the port is configured. Apple's normally is, since it's in /usr/bin, but note that this is usually the Apache 2.2 version. Apple maintains a separate copy on some systems for Apache 1.3 in /usr/bin/apxs-1.3, but it won't be found or used.
For now, if you're still using Apache 1.3, or want that module built also, you'll need to build the SP from source. The dependencies can still be installed via the port system.

The MacPort has been used with the following OS and Apache combinations:

...

.

...

Installing MacPorts

You can find disk images with an installer at http://www.macports.org/ or you can download and build the port software manually from their tarball. After installing it, particularly if you do so from source, you may need to add /opt/local/bin to your shell path.

...

Getting the Shibboleth Portfiles

The Portfiles are now available in the default port repository, so you should be able to install them directly.

...

You may notice that packages are installed that you already have (e.g. perl or openssl). This is unavoidable. Packaging systems that are added to an OS by somebody other than the vendor typically use build conventions that require that all non-OS dependencies be managed and built by the packaging system itself.

...

titleTroubleshooting - curl/openSSL compile

If the port install curl +ssl command fails when configuring the curl package, it may be because openssl did not get configured properly. Check /opt/local/include/openssl/opensslconf.h - and if it contains junk lines like ' --new-group-format='#if defined(_i386) || defined(x86_64_), fix it to make it a good C header file - like:

...

Basic Configuration

These steps will configure Apache to load mod_shib, supply it with proper host and scheme information, and start shibd.

...