www/mod_auth_mellon: Add another key block to generated metadata for encryption

Bump PORTREVISION

2 files changed, 17 insertions, 0 deletions

diff --git a/www/mod_auth_mellon/Makefile b/www/mod_auth_mellon/Makefile
index fa1df821885f..4df20ffa0317 100644
--- a/www/mod_auth_mellon/Makefile
+++ b/www/mod_auth_mellon/Makefile
@@ -1,5 +1,6 @@
 PORTNAME=	mod_auth_mellon
 PORTVERSION=	0.18.0
+PORTREVISION=	1
 CATEGORIES=	www
 PKGNAMEPREFIX=	${APACHE_PKGNAMEPREFIX}
 DISTVERSIONPREFIX=	v
diff --git a/www/mod_auth_mellon/files/patch-mellon__create__metadata.sh b/www/mod_auth_mellon/files/patch-mellon__create__metadata.sh
new file mode 100644
index 000000000000..795822006440
--- /dev/null
+++ b/www/mod_auth_mellon/files/patch-mellon__create__metadata.sh
@@ -0,0 +1,16 @@
+--- mellon_create_metadata.sh.orig	2022-11-02 11:48:53 UTC
++++ mellon_create_metadata.sh
+@@ -75,6 +75,13 @@ CERT="$(grep -v '^-----' "$OUTFILE.cert")"
+ cat >"$OUTFILE.xml" <<EOF
+ <EntityDescriptor entityID="$ENTITYID" xmlns="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
+   <SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol" AuthnRequestsSigned="true">
++    <KeyDescriptor use="encryption">
++      <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
++        <ds:X509Data>
++          <ds:X509Certificate>$CERT</ds:X509Certificate>
++        </ds:X509Data>
++      </ds:KeyInfo>
++    </KeyDescriptor>
+     <KeyDescriptor use="signing">
+       <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
+         <ds:X509Data>