GitLab/ocserv
1
0
Fork 0
mirror of https://gitlab.com/openconnect/ocserv.git synced 2026-02-10 16:57:00 +08:00
Code Issues Packages Projects Releases Wiki Activity
2,211 Commits 19 Branches 88 Tags
a28fc4ea844b643deed4095fab20cfb69eeb423a
Commit Graph

2211 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Nikos Mavrogiannopoulos
9ed9716e0e radius: send IP address on session start 2015-05-04 19:02:40 +02:00
Nikos Mavrogiannopoulos
1b29436168 updated TODO 2015-05-04 18:50:51 +02:00
Nikos Mavrogiannopoulos
70eca474c4 doc: use the "proper" URL for kdcproxy 2015-05-04 10:55:02 +02:00
Nikos Mavrogiannopoulos
3dfd41221c doc update 2015-05-04 10:39:10 +02:00
Nikos Mavrogiannopoulos
9df499e376 tests: added check for radius accounting with certificates 2015-05-04 10:31:25 +02:00
Nikos Mavrogiannopoulos
71bb8f2866 force_read: handle EOF from fd 2015-05-04 10:31:03 +02:00
Nikos Mavrogiannopoulos
2929e1c2e8 radius: properly close accounting for certificate sessions 2015-05-04 10:25:37 +02:00
Nikos Mavrogiannopoulos
038db8fd80 common: corrected select loops 2015-05-04 09:30:23 +02:00
Nikos Mavrogiannopoulos
26b2978f6d allow the _timeout functions to operate without a timeout 2015-05-03 13:58:45 +02:00
Nikos Mavrogiannopoulos
f33009a6f0 selectively specify timeout in recv when needed 2015-05-03 13:53:05 +02:00
Nikos Mavrogiannopoulos
7661726bd7 radius acct: corrected type of value in data setting 2015-05-03 10:07:47 +02:00
Nikos Mavrogiannopoulos
6022b80394 radisu: always send NAS_PORT_TYPE 2015-05-03 10:06:45 +02:00
Nikos Mavrogiannopoulos
d09bff7b09 doc update 2015-05-02 12:23:06 +02:00
Nikos Mavrogiannopoulos
0b0ab73a2e updated message 2015-05-02 10:53:32 +02:00
Nikos Mavrogiannopoulos
5d522a73fe main: do not impose timeout when reading from sec-mod 2015-05-02 10:47:42 +02:00
Nikos Mavrogiannopoulos
89190854f6 doc update 2015-04-29 17:48:32 +02:00
Nikos Mavrogiannopoulos
ddfa37cf4a increased the tgt-freshness-time in examples 2015-04-29 17:36:14 +02:00
Nikos Mavrogiannopoulos
2932f170a6 gssapi: avoid comparison with null mechanism 2015-04-29 13:24:56 +02:00
Nikos Mavrogiannopoulos
c041d669e1 updated comment 2015-04-29 12:53:42 +02:00
Nikos Mavrogiannopoulos
3f91dfab83 corrected termination of sessions which had no associated module (i.e., certificate) 2015-04-29 11:55:15 +02:00
Nikos Mavrogiannopoulos
6e336431fe radius: distinguish between user disconnect and admin reset of worker process 2015-04-29 11:45:29 +02:00
Nikos Mavrogiannopoulos
849c68e4b6 doc update 2015-04-29 11:04:14 +02:00
Nikos Mavrogiannopoulos
1a1ab808a7 tests: verify tgt-freshness-time in Kerberos setup 2015-04-29 10:47:02 +02:00
Nikos Mavrogiannopoulos
e54f6e2ac2 Added config option 'tgt-freshness-time' for GSSAPI 
This allows to set the maximum number of seconds a TGT ticket will
be valid for logging in the VPN. That can be used to prevent
a valid for a day TGT ticket from being used to login to VPN, and
addresses the use-case of where a laptop with a valid TGT ticket is
stolen.
 2015-04-29 10:41:27 +02:00
Nikos Mavrogiannopoulos
595a9607ce doc update 2015-04-28 16:54:55 +02:00
Nikos Mavrogiannopoulos
b4d8a4aa39 tests: updated radius test 2015-04-28 16:39:54 +02:00
Nikos Mavrogiannopoulos
e0cd5c2660 on explicit user termination notify radious as soon 2015-04-28 16:36:35 +02:00
Nikos Mavrogiannopoulos
57104d9148 doc update 2015-04-27 14:10:01 +02:00
Nikos Mavrogiannopoulos
de118b1787 corrected typo in ban-points-connection option 2015-04-27 13:17:50 +02:00
Nikos Mavrogiannopoulos
efea3fa1e2 return more meaningful error code in parse_data() 2015-04-27 10:57:22 +02:00
Nikos Mavrogiannopoulos
a034626add radius: differentiate between user termination and session timeout 2015-04-27 09:49:45 +02:00
Nikos Mavrogiannopoulos
1cdc70763c tests: added check for proper disconnection message in radius 2015-04-27 09:49:41 +02:00
Nikos Mavrogiannopoulos
ff63a1dadd bumped version ocserv_0_10_4 2015-04-27 08:07:13 +02:00
Nikos Mavrogiannopoulos
cbd916caaf doc update 2015-04-26 23:10:41 +02:00
Nikos Mavrogiannopoulos
02aa9c691e keep track of client entries in sec-mod and report them in status msg 2015-04-26 17:06:16 +02:00
Nikos Mavrogiannopoulos
ea7b975840 sec-mod: expire sessions which are in terminated state 
Reported by riteki@gmail.com.
 2015-04-26 16:46:39 +02:00
Nikos Mavrogiannopoulos
80e6e46034 Added support for chacha20-poly1305 if compiled with gnutls 3.4.0 2015-04-26 00:13:28 +02:00
Nikos Mavrogiannopoulos
3f57dd59bf doc update 2015-04-25 10:35:48 +02:00
Nikos Mavrogiannopoulos
0ce51b8ac3 NEWS: made header consistent 2015-04-25 10:20:40 +02:00
Nikos Mavrogiannopoulos
18ed21d979 released 0.10.3 ocserv_0_10_3 2015-04-25 10:14:13 +02:00
Nikos Mavrogiannopoulos
35b9d4364d improved log messages and levels 2015-04-25 10:10:36 +02:00
Nikos Mavrogiannopoulos
d35582ff7d doc update 2015-04-23 16:03:50 +02:00
Nikos Mavrogiannopoulos
2f5b261262 README: updated command for test server 2015-04-23 16:02:42 +02:00
Nikos Mavrogiannopoulos
a588010c41 doc update 2015-04-23 10:28:21 +02:00
Nikos Mavrogiannopoulos
1ab18e839f bumped version 2015-04-22 18:18:46 +02:00
Nikos Mavrogiannopoulos
25e8be3db5 doc update 2015-04-22 17:17:13 +02:00
Nikos Mavrogiannopoulos
ca72c7c60a removed unimplemented option 2015-04-22 17:16:39 +02:00
Nikos Mavrogiannopoulos
700bc55cb2 if user-profile or binary files are setup allow opening files on isolation 
That fixes the user-profile configuration setting when isolate-workers
is set to true.
 2015-04-22 17:15:59 +02:00
Nikos Mavrogiannopoulos
2729fea737 doc update 2015-04-21 16:51:31 +02:00
Nikos Mavrogiannopoulos
8e5e00a40d tests: improved tests with cookies 
They use the --background openconnect option instead of the shell
background command.
 2015-04-21 16:18:39 +02:00