~mamarley/openconnect/+git/gitlab-main:temp-test-centos7

Branch merges

Related source package recipes

No recipes using this branch. (?)

Create packaging recipe

Related snap packages

Related charm recipes

38ea98e... by Dan Lenski on 2021-02-22

why Centos7 failing now?

Signed-off-by: Daniel Lenski <email address hidden>

d3cd392... by Dan Lenski on 2021-02-22

turns out F5 can have an authgroup dropdown

See https://remote.autoliv.com for an example. TODO: parse it and add it to the form.

Signed-off-by: Daniel Lenski <email address hidden>

b78a3a2... by Dan Lenski on 2021-02-22

Fortinet: fix token code generation

And make fake server require this field to be non-empty, in order to test it.

Signed-off-by: Daniel Lenski <email address hidden>

3400f29... by Dan Lenski on 2021-02-22

Fortinet: fix crash caused by absence of redirect

And make fake server emulate this behavior to test it.

Signed-off-by: Daniel Lenski <email address hidden>

d9aa3a9... by Dan Lenski on 2021-02-22

make F5 and Fortinet tests go through config-pulling (up to the point of tunnel connection), rather than stopping after authentication

The fake servers don't actually implement the tunnel, but they do implement
the pre-tunnel configuration endpoints, and then simulate a "cookie rejected"
response upon tunnel connection.

OpenConnect distinguishes cookie rejected via an exit status of 2, whereas
any other failure results in an exit status of 1.

Signed-off-by: Daniel Lenski <email address hidden>

d02b0bf... by Dan Lenski on 2021-02-21

add auth-f5 tests

This tests OpenConnect's ability to authenticate with a (fake) F5
server, using username+password (the only option that OpenConnect
currently supports).

The fake F5 authentication server requires python3 and Flask.

Signed-off-by: Daniel Lenski <email address hidden>

32650e5... by Dan Lenski on 2021-02-21

add auth-fortinet tests

This tests OpenConnect's ability to authenticate with a (fake) Fortinet
server, using all of the options that OpenConnect currently supports
(username+password, username+password+token, non-default realm).

The fake Fortinet authentication server requires python3 and Flask.

Signed-off-by: Daniel Lenski <email address hidden>

d2fd548... by Dan Lenski on 2021-02-20

add openconnect__strchrnul function to compat.c

GNU strchrnul() is trivial to implement, and makes a bunch of string parsing
functions simpler and less error-prone.

Signed-off-by: Daniel Lenski <email address hidden>

2e6fad7... by Dan Lenski on 2021-02-19

Fortinet's realm parameter comes from the URL-path

See an example at https://github.com/adrienverge/openfortivpn/issues/827

Signed-off-by: Daniel Lenski <email address hidden>

d634647... by Dan Lenski on 2021-02-19

Fortinet: parse <split-dns> domains and DNS servers from config

Chimped config containing these settings from
https://github.com/adrienverge/openfortivpn/issues/824#issuecomment-764641406.

This doesn't actually *do* anything with the settings yet.

See https://github.com/dlenski/openconnect/issues/151 and
https://gitlab.com/openconnect/openconnect/-/merge_requests/132 for
discussion about split-DNS.

Signed-off-by: Daniel Lenski <email address hidden>