#4647 Check licensing compatibility with AL2
closed
General
2015-08-20
2012-08-02
No
See http://incubator.apache.org/projects/allura.html section "Verify distribution rights"
See also http://www.apache.org/legal/resolved.html
We should go through all our deps in requirements*.txt and check their licensing. Also check for any differently-licensed code files checked into our main codebase.
Created [#4655] for ForgeHg's Mercurial dependency, since that is a known big task.
Related
Tickets:
#4655html2text is GPL. It's used to convert html to markdown, and used by the wiki importer and blog rss importer. The former is already optional, we'll have to make the blog rss importer optional.
FYI, http://www.apache.org/legal/resolved.html#optional explains how an optional dependency on e.g. GPL'd package is ok
I've pushed a branch with html2text made optional. I've also double-checked licensing of all requirements not so long ago, and checked any new coming since then. There is a potential issue with ActivityStream, which may block this ticket. I've reported it under [#5529].
I see no other issues with dependency licensing, however, I spotted some issues regarding how certain parts of our codebase are licensed:
- Allura/allura/public/nf/js/jquery.maxlength-min.js: file states it's licensed under GNU GPL
- NoWarnings: setup.py passes GPL as a license parameter to setuptools' setup() function, but LICENSE file claims it's licensed under Apache License 2.0
Related
Tickets:
#5529Nice work. I also moved
html2textfromrequirements.txttorequirements-optional.txt