collective/nu-vpn-proxy
17
0
Fork 0
Code
27 Commits 1 Branch 0 Tags 198 KiB
60fc49fd8e
Commit Graph

27 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Benjamin Mako Hill
60fc49fd8e updated documentation with new material 2020-06-09 16:13:39 -07:00
Benjamin Mako Hill
7e13b54cde initial version of the CDSC version of scripts 2020-06-09 16:04:15 -07:00
Daniel Lenski
47b2c41af7 have test-globalprotect-login.py suggest a new invocation of itself (gateway login) after a successful portal getconfig 
Based on cookies suggested by @yuezk at https://gitlab.com/openconnect/openconnect/-/merge_requests/109
 2020-05-13 13:34:14 -07:00
Daniel Lenski
6133ffeb7a use either PyGObject (import gi, maintained) or pgi (import pgi, old/unmaintained) 
ping #7
 2020-03-29 09:54:24 -07:00
Daniel Lenski
4ee7744d7d need to base64-decode URLs from SAML REDIRECT too 2020-03-29 09:54:24 -07:00
Daniel Lenski
6ee0c49794 I swear I know how to write Python 🤦🏻‍♂ 2020-03-23 15:18:36 -07:00
Daniel Lenski
d8929a47d1 minimal .travis.yml (just verifies that script can be byte-compiled) 2020-03-23 12:58:17 -07:00
Daniel Lenski
f381399b8f we have reports of prelogin-cookie used for portal login; don't do interface switcheroo by default, just mention it 2020-03-23 12:58:17 -07:00
Daniel Lenski
dc4665ee97 make verbose=1 the default, add -q/--quiet to suppress it 2020-03-23 12:58:17 -07:00
Daniel Lenski
66438abc7c include clientos in output command-lines and environment variables 2020-03-23 12:58:17 -07:00
Daniel Lenski
6bbbe47904 fix too-hurried ambiguity warnings, fix b64 encoding for SAML REDIRECT too 2020-03-23 12:32:39 -07:00
Daniel Lenski
2cf05074cc include clientos in prelogin.esp parameters (ping #6) 
Apparently, it affects whether the prelogin.esp response contains SAML tags
in some cases.
(see https://github.com/dlenski/gp-saml-gui/issues/6#issuecomment-599743060)

This fits in with a long line of mystifying issues caused by GlobalProtect servers
silently handling different `clientos` values in stupidly different ways.
(see https://gitlab.com/openconnect/openconnect/-/merge_requests/17)
 2020-03-17 15:55:21 -07:00
Daniel Lenski
3e09aecfec clarify ambiguities in destination, slightly better error messages 2020-03-13 10:54:42 -07:00
Daniel Lenski
8ca97e5bdb assume server from which we received SAML results is the right one for final GP authentication 
Should fix https://gitlab.com/openconnect/openconnect/issues/97

In particular: https://gitlab.com/openconnect/openconnect/issues/97#note_276932462
 2020-01-25 17:15:01 -08:00
Daniel Lenski
ef2bfa6b56 extensive cleanup, more logging 2020-01-25 16:55:45 -08:00
Daniel Lenski
b1c36bf95e this script should live here 2020-01-25 16:46:12 -08:00
Daniel Lenski
dae4360c38 better SSL error handling (especially, distinguish cert from non-cert errors) 2020-01-24 00:19:05 -08:00
Daniel Lenski
10e4628f35 should use shlex.quote() instead of repr() 2020-01-24 00:17:02 -08:00
Daniel Lenski
2cbd24046b pass along --no-verify flag to WebKit2 GUI (ping #5) 2019-11-25 13:06:25 -08:00
Dan Lenski
37bfe26183
Merge pull request #4 from jasonaowen/install 
Add installation notes
 2019-10-21 09:43:35 -07:00
Daniel Lenski
32265e4504 add requirements.txt 2019-10-18 21:20:02 -07:00
Jason Owen
70f96b0f2d Add installation notes 
Add some instructions on how to install the dependencies needed to use
this tool.
 2019-10-18 17:06:53 -07:00
Daniel Lenski
f923c1247c SAML auth isn't done until we've gotten the username and cookie headers specifically (ping #2) 2019-09-19 14:02:42 -07:00
Daniel Lenski
ff4d825290 add --external and --uri for convenient debugging/futzing purposes 2019-09-17 10:51:50 -07:00
Daniel Lenski
f429acaa10 log other resources loaded when verbosity > 1 (e.g. -vv flag) 2019-09-16 21:23:40 -07:00
Daniel Lenski
d30ca2c960 persist cookies 2019-09-16 19:57:48 -07:00
Daniel Lenski
4e5cd24588 initial commit 2019-09-16 19:57:48 -07:00