diff options
author | jim-p <jimp@pfsense.org> | 2016-12-12 15:37:27 -0500 |
---|---|---|
committer | jim-p <jimp@pfsense.org> | 2016-12-12 15:37:27 -0500 |
commit | c165a17e0225f09afb4882d360ba086f629f2b77 (patch) | |
tree | fe1613a0703eb6b0b135a8d939dbd02ce5f27f0b /src/etc/inc/openvpn.auth-user.php | |
parent | e719538c01cde5c444255941655a54134c68f16b (diff) | |
download | pfsense-c165a17e0225f09afb4882d360ba086f629f2b77.zip pfsense-c165a17e0225f09afb4882d360ba086f629f2b77.tar.gz |
Encode the auth server list before passing it on the CLI, to avoid issues with special characters that break when interpreted as URL parameters during OpenVPN auth. Fixes #7002
Diffstat (limited to 'src/etc/inc/openvpn.auth-user.php')
-rw-r--r-- | src/etc/inc/openvpn.auth-user.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/src/etc/inc/openvpn.auth-user.php b/src/etc/inc/openvpn.auth-user.php index f471055..bf1caf9 100644 --- a/src/etc/inc/openvpn.auth-user.php +++ b/src/etc/inc/openvpn.auth-user.php @@ -96,7 +96,7 @@ function getCalledStationId() { openlog("openvpn", LOG_ODELAY, LOG_AUTH); if (isset($_GET['username'])) { - $authmodes = explode(",", $_GET['authcfg']); + $authmodes = explode(",", base64_decode($_GET['authcfg'])); /* Any string retrieved through $_GET is automatically urlDecoded */ $username = base64_decode($_GET['username']); $password = base64_decode($_GET['password']); |