Margarita is a web interface to reposado the Apple Software Update replication and catalog management tool. While the reposado command line administration tools work great for folks who are comfortable in that environment something a little more accesible might be desired.
Margarita attempts to be an easy to use and quick interface to list or delist update products in branch catalogs per the usual reposado catalog management concepts.
This fork of margarita now has SAML authentication using the python3-saml plugin.
I have also performed some minor updates to the CSS of this project to give it a hopefully cleaner look. You can always remove the CSS if you'd like.
Python 3
You will need to use Python 3 with this version of Margarita. From there I highly recommend creating a virtualenv to store margarita in.
reposado (Python 3)
See the reposado project for how to install and configure it. It needs to be setup and configured with at least Apple's software update catalogs initially synced.
Note: Reposado may be installed either via setup.py/setuptools or simply run from the code files (either by downloading and extracting the files or by cloning the repository, etc.). Running from the code files is the documented way to run reposado. It is important to know in which way reposado is installed as Margarita needs to reference the location of the reposado library files which are located wherever reposado is installed. See below on installation for details on setup. Thanks to timsutton on issue #1 for clarifying this.
Flask
easy_install flask
Or
pip install flask
If you prefer to install into a Python virtualenv that works as well.
Python 3 SAML
This margarita install uses python3-saml so you will need to create a saml folder in your margarita folder. From there you will need to contact your IDP and build the files settings.json and advanced_settings.json. You can also use a certs folder if you'd like or you can put the certificate itself in the settings.json file. See below for examples:
settings.json advanced_settings.json
-
Create a virtualenv in a directory of your choice.
-
Change directory into this location.
-
Activate the virtualenv
-
Clone the repository into your newly created virtualenv
-
Perform installation of the required packages by using pip.
pip install -r requirements.txt
-
Configure you secret key for use with SAML by copying the secret_key.py or creating a secret_key.py file and creating your own unique SECRET_KEY that ca be used when initiating SAML.
-
If reposado is running from code per the documented installation instructions (and not installed into site-packages via easy_install/setup.py) then one needs to create a symlink to the reposadolib directory in order for Margarita to find the reposado common libraries.
-
Create a symlink to the reposado configuration file. This is needed because the reposado libraries reference the config file from the executing script's directory. In Margarita's case this is Margarita's source directory.
Create symlinks:
cd /path/to/margarita-install
# may be optional depending on reposado installation
ln -s /path/to/reposado-git-clone/code/reposadolib .
ln -s /path/to/reposado-git-clone/code/preferences.plist .
To create a service on linux you can basically copy paste this and modify it to the directory that your margarita environment lives.
[Unit]
Description=Margarita
[Service]
WorkingDirectory=/where/your/margarita/install/lives/margarita_env
ExecStart=/where/your/margarita/install/lives/margarita_env/bin/python /usr/local/where/your/margarita/install/lives/margarita_env/margarita.py
Restart=always
StandardOutput=syslog
StandardError=syslog
[Install]
WantedBy=multi-user.target
This can be created in /etc/systemd/system as margarita.service. Once created you can then start it by running systemctl start magarita.
Note: Margarita must have permission to the reposado repository in order to effect any changes. This may mean you need to run margarita as a different user:
sudo -u _www python margarita.py
In the documentation above Margarita runs in the "development" web server built into Flask. This may not be ideal in some situations and there are some alternatives for running in a more "production"-ready webservers. Joe Wollard has an excellent article describing how to setup Margarita using mod_wsgi on Linux using WSGI:
Helpful guides written by others: