Add backend code to verify username against cn on login if set by user. Needs GUI code to set the option yet. Ticket #887

author: jim-p <jimp@pfsense.org> 2010-10-12 17:21:32 -0400
committer: jim-p <jimp@pfsense.org> 2010-10-12 17:21:32 -0400
commit: 8901958c07478a924b87bff8c0cde56e3a259a8c (patch)
tree: 8148693f63086ba55782a4e4620a771297bdb109 /etc/inc/openvpn.inc
parent: bd6f4dccdb9764011bd56eb231db99a272f190db (diff)
download: pfsense-8901958c07478a924b87bff8c0cde56e3a259a8c.zip
pfsense-8901958c07478a924b87bff8c0cde56e3a259a8c.tar.gz
1 files changed, 3 insertions, 1 deletions
diff --git a/etc/inc/openvpn.inc b/etc/inc/openvpn.inc
index e41d39e..b25b257 100644
--- a/etc/inc/openvpn.inc
+++ b/etc/inc/openvpn.inc
@@ -392,7 +392,9 @@ function openvpn_reconfigure($mode,& $settings) {
 						$firstsed = 1;
 						$sed .= "\"{$authcfg}\"";
 					}
-					$sed .= ");";
+					$sed .= ");\\\n";
+					if (isset($settings['strictusercn']))
+						$sed .= "\$strictusercn = true;";
 					mwexec("/bin/cat /etc/inc/openvpn.auth-user.php | /usr/bin/sed 's/\/\/<template>/{$sed}/g' >  {$g['varetc_path']}/openvpn/{$mode_id}.php");
 					mwexec("/bin/chmod a+x {$g['varetc_path']}/openvpn/{$mode_id}.php");
 					$conf .= "auth-user-pass-verify {$g['varetc_path']}/openvpn/{$mode_id}.php via-env\n";
author	jim-p <jimp@pfsense.org>	2010-10-12 17:21:32 -0400
committer	jim-p <jimp@pfsense.org>	2010-10-12 17:21:32 -0400
commit	8901958c07478a924b87bff8c0cde56e3a259a8c (patch)
tree	8148693f63086ba55782a4e4620a771297bdb109 /etc/inc/openvpn.inc
parent	bd6f4dccdb9764011bd56eb231db99a272f190db (diff)
download	pfsense-8901958c07478a924b87bff8c0cde56e3a259a8c.zip pfsense-8901958c07478a924b87bff8c0cde56e3a259a8c.tar.gz