serf1: enable GSSAPI/Kerberos

[dogcow@…]

By default, serf-1.3.1 and prior (at very least) do not enable use of Kerberos and/or GSSAPI; they can be enabled by invoking scons as scons GSSAPI=/path/to/kerb - e.g. scons GSSAPI=/usr for the system libraries, scons GSSAPI=${prefix} for the macports-provided kerberos libraries, etc.

It would be nice if it were enableable by default or as a variant.

[blair (Blair Zajac)]

Please submit a patch for this feature that includes support and I'll commit it.

Since Subversion is the primary serf1 dependent and Subversion depends upon cyrus-sasl2 which has a default variant to depend upon kerberos so there's no need to make a variant for it.

[thomas.downes@…]

It is not empirically true that cyrus-sasl2 provides the necessary client library to login to my KRB protected website. I tried a Portfile which depends on port:kerberos5 and set GSSAPI=${prefix}. Compiled successfully but would hang at authentication. /usr/bin/svn was OK, so I tried having it look for the system-wide kerberos installation.

This may be because I am working on a laptop that is integrated into a campus Active Directory server that uses kerberos in some way. I wouldn't be surprised if system-wide Kerberos libraries are loaded pretty early on in boot.

You might also consider updating to 1.3.8 and ​http://serf.apache.org/ as the URI. Google code is read-only.

--- Portfile.bak	2015-09-10 12:14:35.000000000 -0500
+++ Portfile	2015-09-10 12:39:59.000000000 -0500
@@ -49,6 +49,7 @@
 build.target    APR=${prefix} \
                 APU=${prefix} \
                 OPENSSL=${prefix} \
+                GSSAPI=/usr \
                 PREFIX=${prefix}
 
 destroot.cmd        ${build.cmd}