kojipkgs: slightly relax openh264 blocking/redirect rules

Allow access to gstreamer1-plugin-openh264 package and new noopenh264 stub package that don't contain non-distributable code, while keeping openh264* and mozilla-openh264* blocked. See https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=2247274 for "noopenh264" stub package review that makes it possible to build/ship the gstreamer plugin in Fedora proper while keeping the non-distributable openh264 package in Cisco repos.
2023-11-06 11:44:19 +01:00 · 2023-11-06 11:44:19 +01:00 · 0064e09bff
commit 0064e09bff
parent 9314b70862
1 changed files with 1 additions and 1 deletions
--- a/roles/kojipkgs/templates/kojipkgs.conf
+++ b/roles/kojipkgs/templates/kojipkgs.conf
@ -181,7 +181,7 @@ Alias /pub /pub
 # This IP is sign-bridge01.iad2.fedoraproject.org.
 # It needs to be able to sign openh264 packages.
 RewriteCond %{HTTP:X-Forwarded-For} !10.3.169.120
-RewriteRule ".*/.*openh264.*.(x86_64|armv7hl|i686|ppc64|ppc64le|aarch64|s390x).rpm$" "https://fedoraproject.org/wiki/non-distributable-rpms" [R=302,L]
+RewriteRule ".*/(openh264|mozilla-openh264).*.(x86_64|armv7hl|i686|ppc64|ppc64le|aarch64|s390x).rpm$" "https://fedoraproject.org/wiki/non-distributable-rpms" [R=302,L]

 # Set HSTS header via HTTP since it cannot be easily set in squid, which terminates HTTPS
 Header always add Strict-Transport-Security "max-age=31536000; includeSubDomains; preload"