Using AutoPkg to build a Cisco Secure Client installer
2024-1-27 19:42:13 Author: derflounder.wordpress.com(查看原文) 阅读量:17 收藏

<?xml version="1.0" encoding="UTF-8"?> <!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd"&gt; <plist version="1.0"> <dict> <key>Comments</key> <string>Based on https://github.com/autopkg/grahampugh-recipes/blob/master/CiscoSecureClient/CiscoSecureClient.pkg.recipe Wraps the vendor package so that it can be run with Choice Changes XML. Requires a configuration xml profile (VPN_XML) which should be added to the RECIPE_OVERRIDE_DIR before running the recipe. An example is provided in the recipe repo folder, named example.xml. If you need more packages installing, you should make a copy of this recipe and edit the ChoicesXMLGenerator choices list. This isn't overridable. Don't forget to change the Identifier if you do this. </string> <key>Description</key> <string>Creates a Cisco Secure Client package with all modules enabled.</string> <key>Identifier</key> <string>com.company.pkg.CiscoSecureClient-AllModulesEnabled</string> <key>ParentRecipe</key> <string>com.company.download.CiscoSecureClient</string> <key>Input</key> <dict> <key>NAME</key> <string>Cisco Secure Client</string> <key>VPN_XML</key> <string>example.xml</string> <key>CONTENT_XML</key> <string>Put_escaped_XML_profile_text_into_AutoPkg_recipe_override</string> <key>UMBRELLA_ORGANIZATION_ID</key> <string>Put_text_into_AutoPkg_recipe_override</string> <key>UMBRELLA_FINGERPRINT</key> <string>Put_text_into_AutoPkg_recipe_override</string> <key>UMBRELLA_USER_ID</key> <string>Put_text_into_AutoPkg_recipe_override</string> <key>CHOICE_VPN</key> <string>1</string> <key>CHOICE_WEBSECURITY</key> <string>1</string> <key>CHOICE_FIREAMP</key> <string>1</string> <key>CHOICE_DART</key> <string>1</string> <key>CHOICE_DUO</key> <string>1</string> <key>CHOICE_POSTURE</key> <string>1</string> <key>CHOICE_ISEPOSTURE</key> <string>1</string> <key>CHOICE_NVM</key> <string>1</string> <key>CHOICE_THOUSANDEYES</key> <string>1</string> <key>CHOICE_UMBRELLA</key> <string>1</string> <key>CHOICE_ZEROTRUST</key> <string>1</string> <key>DISABLE_VPN</key> <string>false</string> <key>DISABLE_CUSTOMER_EXPERIENCE_FEEDBACK</key> <string>false</string> <key>HIDE_UNINSTALLERS</key> <string>1</string> <key>VENDOR</key> <string>Cisco</string> <key>SOFTWARETITLE1</key> <string>Secure</string> <key>SOFTWARETITLE2</key> <string>Client</string> <key>SOFTWARETITLE3</key> <string>All_Modules_Enabled</string> <key>PKGID</key> <string>com.company.cisco.SecureClient</string> </dict> <key>MinimumVersion</key> <string>1.0.0</string> <key>Process</key> <array> <dict> <key>Arguments</key> <dict> <key>pkgdirs</key> <dict> <key>Profiles</key> <string>0755</string> <key>Profiles/ampenabler</key> <string>0755</string> <key>Profiles/feedback</key> <string>0755</string> <key>Profiles/iseposture</key> <string>0755</string> <key>Profiles/nvm</key> <string>0755</string> <key>Profiles/umbrella</key> <string>0755</string> <key>Profiles/vpn</key> <string>0755</string> <key>Profiles/websecurity</key> <string>0755</string> </dict> <key>pkgroot</key> <string>%RECIPE_CACHE_DIR%/Scripts</string> </dict> <key>Processor</key> <string>PkgRootCreator</string> </dict> <dict> <key>Arguments</key> <dict> <key>pkgdirs</key> <dict> </dict> <key>pkgroot</key> <string>%RECIPE_CACHE_DIR%/pkgroot</string> </dict> <key>Processor</key> <string>PkgRootCreator</string> </dict> <dict> <key>Arguments</key> <dict> <key>pkg_path</key> <string>%RECIPE_CACHE_DIR%/Scripts/CiscoSecureClient.pkg</string> <key>source_pkg</key> <string>%pathname%/Cisco Secure Client.pkg</string> </dict> <key>Processor</key> <string>PkgCopier</string> </dict> <dict> <key>Arguments</key> <dict> <key>file_content</key> <string>%CONTENT_XML%</string> <key>file_mode</key> <string>0644</string> <key>file_path</key> <string>%RECIPE_CACHE_DIR%/Scripts/Profiles/vpn/%VPN_XML%</string> </dict> <key>Processor</key> <string>FileCreator</string> </dict> <dict> <key>Arguments</key> <dict> <key>file_content</key> <string>{ &quot;organizationId&quot; : &quot;%UMBRELLA_ORGANIZATION_ID%&quot;, &quot;fingerprint&quot; : &quot;%UMBRELLA_FINGERPRINT%&quot;, &quot;userId&quot; : &quot;%UMBRELLA_USER_ID%&quot; } </string> <key>file_mode</key> <string>0644</string> <key>file_path</key> <string>%RECIPE_CACHE_DIR%/Scripts/Profiles/umbrella/OrgInfo.json</string> </dict> <key>Processor</key> <string>FileCreator</string> </dict> <dict> <key>Arguments</key> <dict> <key>file_content</key> <string>&lt;?xml version=&quot;1.0&quot; encoding=&quot;UTF-8&quot;?&gt; &lt;!DOCTYPE plist PUBLIC &quot;-//Apple//DTD PLIST 1.0//EN&quot; &quot;http://www.apple.com/DTDs/PropertyList-1.0.dtd&quot;&gt; &lt;plist version=&quot;1.0&quot;&gt; &lt;array&gt; &lt;dict&gt; &lt;key&gt;attributeSetting&lt;/key&gt; &lt;integer&gt;%CHOICE_VPN%&lt;/integer&gt; &lt;key&gt;choiceAttribute&lt;/key&gt; &lt;string&gt;selected&lt;/string&gt; &lt;key&gt;choiceIdentifier&lt;/key&gt; &lt;string&gt;choice_anyconnect_vpn&lt;/string&gt; &lt;/dict&gt; &lt;dict&gt; &lt;key&gt;attributeSetting&lt;/key&gt; &lt;integer&gt;%CHOICE_WEBSECURITY%&lt;/integer&gt; &lt;key&gt;choiceAttribute&lt;/key&gt; &lt;string&gt;selected&lt;/string&gt; &lt;key&gt;choiceIdentifier&lt;/key&gt; &lt;string&gt;choice_websecurity&lt;/string&gt; &lt;/dict&gt; &lt;dict&gt; &lt;key&gt;attributeSetting&lt;/key&gt; &lt;integer&gt;%CHOICE_FIREAMP%&lt;/integer&gt; &lt;key&gt;choiceAttribute&lt;/key&gt; &lt;string&gt;selected&lt;/string&gt; &lt;key&gt;choiceIdentifier&lt;/key&gt; &lt;string&gt;choice_fireamp&lt;/string&gt; &lt;/dict&gt; &lt;dict&gt; &lt;key&gt;attributeSetting&lt;/key&gt; &lt;integer&gt;%CHOICE_DART%&lt;/integer&gt; &lt;key&gt;choiceAttribute&lt;/key&gt; &lt;string&gt;selected&lt;/string&gt; &lt;key&gt;choiceIdentifier&lt;/key&gt; &lt;string&gt;choice_dart&lt;/string&gt; &lt;/dict&gt; &lt;dict&gt; &lt;key&gt;attributeSetting&lt;/key&gt; &lt;integer&gt;%CHOICE_DUO%&lt;/integer&gt; &lt;key&gt;choiceAttribute&lt;/key&gt; &lt;string&gt;selected&lt;/string&gt; &lt;key&gt;choiceIdentifier&lt;/key&gt; &lt;string&gt;choice_duo&lt;/string&gt; &lt;/dict&gt; &lt;dict&gt; &lt;key&gt;attributeSetting&lt;/key&gt; &lt;integer&gt;%CHOICE_POSTURE%&lt;/integer&gt; &lt;key&gt;choiceAttribute&lt;/key&gt; &lt;string&gt;selected&lt;/string&gt; &lt;key&gt;choiceIdentifier&lt;/key&gt; &lt;string&gt;choice_secure_firewall_posture&lt;/string&gt; &lt;/dict&gt; &lt;dict&gt; &lt;key&gt;attributeSetting&lt;/key&gt; &lt;integer&gt;%CHOICE_ISEPOSTURE%&lt;/integer&gt; &lt;key&gt;choiceAttribute&lt;/key&gt; &lt;string&gt;selected&lt;/string&gt; &lt;key&gt;choiceIdentifier&lt;/key&gt; &lt;string&gt;choice_iseposture&lt;/string&gt; &lt;/dict&gt; &lt;dict&gt; &lt;key&gt;attributeSetting&lt;/key&gt; &lt;integer&gt;%CHOICE_NVM%&lt;/integer&gt; &lt;key&gt;choiceAttribute&lt;/key&gt; &lt;string&gt;selected&lt;/string&gt; &lt;key&gt;choiceIdentifier&lt;/key&gt; &lt;string&gt;choice_nvm&lt;/string&gt; &lt;/dict&gt; &lt;dict&gt; &lt;key&gt;attributeSetting&lt;/key&gt; &lt;integer&gt;%CHOICE_THOUSANDEYES%&lt;/integer&gt; &lt;key&gt;choiceAttribute&lt;/key&gt; &lt;string&gt;selected&lt;/string&gt; &lt;key&gt;choiceIdentifier&lt;/key&gt; &lt;string&gt;choice_thousandeyes&lt;/string&gt; &lt;/dict&gt; &lt;dict&gt; &lt;key&gt;attributeSetting&lt;/key&gt; &lt;integer&gt;%CHOICE_UMBRELLA%&lt;/integer&gt; &lt;key&gt;choiceAttribute&lt;/key&gt; &lt;string&gt;selected&lt;/string&gt; &lt;key&gt;choiceIdentifier&lt;/key&gt; &lt;string&gt;choice_secure_umbrella&lt;/string&gt; &lt;/dict&gt; &lt;dict&gt; &lt;key&gt;attributeSetting&lt;/key&gt; &lt;integer&gt;%CHOICE_ZEROTRUST%&lt;/integer&gt; &lt;key&gt;choiceAttribute&lt;/key&gt; &lt;string&gt;selected&lt;/string&gt; &lt;key&gt;choiceIdentifier&lt;/key&gt; &lt;string&gt;choice_zta&lt;/string&gt; &lt;/dict&gt; &lt;/array&gt; &lt;/plist&gt; </string> <key>file_mode</key> <string>0755</string> <key>file_path</key> <string>%RECIPE_CACHE_DIR%/Scripts/InstallerChoices.xml</string> </dict> <key>Processor</key> <string>FileCreator</string> </dict> <dict> <key>Arguments</key> <dict> <key>file_content</key> <string>&lt;!– Optional SecureClient installer settings are provided below. Configure the setting(s) as &quot;true&quot; (default &quot;false&quot; or commented out) to perform optional action(s) at install time. —&gt; &lt;Transforms&gt; &lt;DisableVPN&gt;%DISABLE_VPN%&lt;/DisableVPN&gt; &lt;DisableCustomerExperienceFeedback&gt;%DISABLE_CUSTOMER_EXPERIENCE_FEEDBACK%&lt;/DisableCustomerExperienceFeedback&gt; &lt;/Transforms&gt; </string> <key>file_mode</key> <string>0755</string> <key>file_path</key> <string>%RECIPE_CACHE_DIR%/Scripts/Profiles/ACTransforms.xml</string> </dict> <key>Processor</key> <string>FileCreator</string> </dict> <dict> <key>Arguments</key> <dict> <key>file_content</key> <string>#!/bin/bash packagePath=&quot;${0%/*}/CiscoSecureClient.pkg&quot; choicesXML=&quot;${0%/*}/InstallerChoices.xml&quot; # Set value in AutoPkg override, default is 1 for &quot;true&quot; hideUninstallers=&quot;%HIDE_UNINSTALLERS%&quot; # Array of uninstall application bundles on the installer&apos;s target volume if [[ -n $3 ]]; then targetVolume=$3 else targetVolume=&quot;&quot; fi uninstallAppBundlePaths=( &quot;${targetVolume}/Applications/Cisco/Uninstall Cisco Secure Client – DART.app&quot; &quot;${targetVolume}/Applications/Cisco/Uninstall Cisco Secure Client.app&quot; ) exitCode=0 # Run embedded installer with the Choice Changes XML if [[ -r &quot;${packagePath}&quot; &amp;&amp; -r &quot;${choicesXML}&quot; ]]; then if ! /usr/sbin/installer -applyChoiceChangesXML &quot;${choicesXML}&quot; -pkg &quot;${packagePath}&quot; -target &quot;$3&quot;; then echo &quot;Installation of package \&quot;${packagePath}\&quot; failed.&quot; exitCode=1 fi else echo &quot;Package \&quot;${packagePath}\&quot; not found.&quot; exitCode=1 fi # Hide uninstallers # Override will specify 1 as &quot;true&quot; # Set to another value to specify &quot;false&quot; # If variable is unset/null or still contains an AutoPkg variable reference, treat as &quot;true&quot; if [[ &quot;${hideUninstallers}&quot; -eq 1 || \ -z &quot;${hideUninstallers}&quot; || \ &quot;${hideUninstallers}&quot; == &quot;%&quot;&quot;HIDE_UNINSTALLERS&quot;&quot;%&quot; ]]; then for uninstallAppBundlePath in &quot;${uninstallAppBundlePaths[@]}&quot; do if [[ -d &quot;${uninstallAppBundlePath}&quot; ]]; then if /usr/bin/chflags hidden &quot;${uninstallAppBundlePath}&quot;; then echo &quot;Uninstaller app bundle \&quot;${uninstallAppBundlePath}\&quot; was hidden successfully.&quot; else echo &quot;Uninstaller app bundle \&quot;${uninstallAppBundlePath}\&quot; was not hidden successfully.&quot; exitCode=1 fi else echo &quot;Uninstaller app bundle \&quot;${uninstallAppBundlePath}\&quot; was not found and cannot be hidden.&quot; fi done else echo &quot;Uninstallers will not be hidden.&quot; fi exit &quot;${exitCode}&quot; </string> <key>file_mode</key> <string>0755</string> <key>file_path</key> <string>%RECIPE_CACHE_DIR%/Scripts/postinstall</string> </dict> <key>Processor</key> <string>FileCreator</string> </dict> <dict> <key>Arguments</key> <dict> <key>pkg_request</key> <dict> <key>chown</key> <array> </array> <key>id</key> <string>%PKGID%.%VENDOR%%SOFTWARETITLE1%%SOFTWARETITLE2%</string> <key>pkgname</key> <string>%VENDOR%_%SOFTWARETITLE1%_%SOFTWARETITLE2%_%SOFTWARETITLE3%_%version%</string> <key>pkgroot</key> <string>%RECIPE_CACHE_DIR%/pkgroot</string> <key>pkgtype</key> <string>flat</string> <key>scripts</key> <string>%RECIPE_CACHE_DIR%/Scripts</string> <key>version</key> <string>%version%</string> </dict> </dict> <key>Processor</key> <string>PkgCreator</string> </dict> <dict> <key>Arguments</key> <dict> <key>path_list</key> <array> <string>%RECIPE_CACHE_DIR%/%VENDOR%</string> <string>%RECIPE_CACHE_DIR%/pkgroot</string> </array> </dict> <key>Processor</key> <string>PathDeleter</string> </dict> </array> </dict> </plist>

文章来源: https://derflounder.wordpress.com/2024/01/27/using-autopkg-to-build-a-cisco-secure-client-installer/
如有侵权请联系:admin#unsafe.sh