diff options
author | jim-p <jimp@pfsense.org> | 2010-10-12 17:21:32 -0400 |
---|---|---|
committer | jim-p <jimp@pfsense.org> | 2010-10-12 17:21:32 -0400 |
commit | 8901958c07478a924b87bff8c0cde56e3a259a8c (patch) | |
tree | 8148693f63086ba55782a4e4620a771297bdb109 /etc/inc/openvpn.inc | |
parent | bd6f4dccdb9764011bd56eb231db99a272f190db (diff) | |
download | pfsense-8901958c07478a924b87bff8c0cde56e3a259a8c.zip pfsense-8901958c07478a924b87bff8c0cde56e3a259a8c.tar.gz |
Add backend code to verify username against cn on login if set by user. Needs GUI code to set the option yet. Ticket #887
Diffstat (limited to 'etc/inc/openvpn.inc')
-rw-r--r-- | etc/inc/openvpn.inc | 4 |
1 files changed, 3 insertions, 1 deletions
diff --git a/etc/inc/openvpn.inc b/etc/inc/openvpn.inc index e41d39e..b25b257 100644 --- a/etc/inc/openvpn.inc +++ b/etc/inc/openvpn.inc @@ -392,7 +392,9 @@ function openvpn_reconfigure($mode,& $settings) { $firstsed = 1; $sed .= "\"{$authcfg}\""; } - $sed .= ");"; + $sed .= ");\\\n"; + if (isset($settings['strictusercn'])) + $sed .= "\$strictusercn = true;"; mwexec("/bin/cat /etc/inc/openvpn.auth-user.php | /usr/bin/sed 's/\/\/<template>/{$sed}/g' > {$g['varetc_path']}/openvpn/{$mode_id}.php"); mwexec("/bin/chmod a+x {$g['varetc_path']}/openvpn/{$mode_id}.php"); $conf .= "auth-user-pass-verify {$g['varetc_path']}/openvpn/{$mode_id}.php via-env\n"; |