"Fossies" - the Fresh Open Source Software Archive

Member "openvpn-2.4.7/sample/sample-plugins/keying-material-exporter-demo/README" (20 Feb 2019, 2316 Bytes) of package /windows/misc/openvpn-2.4.7.zip:


As a special service "Fossies" has tried to format the requested text file into HTML format (style: standard) with prefixed line numbers. Alternatively you can here view or download the uninterpreted source code file.

    1 OpenVPN plugin examples.                            Daniel Kubec <niel@rtfm.cz>
    2 
    3 Examples provided:
    4 
    5 keyingmaterialexporter.c   -- Example based on TLS Keying Material Exporters over HTTP [RFC-5705]
    6                               (openvpn/doc/keying-material-exporter.txt)
    7 
    8 This example demonstrates authenticating a user over HTTP who have already
    9 established an OpenVPN connecting using the --keying-material-exporter
   10 feature.
   11 
   12 Requires:
   13 OpenVPN RFC-5705 Support, OpenSSL >= 1.0.1
   14 
   15 Files:
   16   http-server.py -- Example HTTP Server listen  0.0.0.0:8080
   17   http-client.py -- Example HTTP Client connect 10.8.0.1:8080 [GET /$SESSIONID]
   18 
   19   server.ovpn    -- Example HTTP SSO VPN Server configuration
   20   client.ovpn    -- Example HTTP SSO VPN Client configuration
   21 
   22   keyingmaterialexporter.c,
   23   keyingmaterialexporter.so  -- Example OpenVPN Client and Server plugin
   24 
   25 To build:
   26   ./build keyingmaterialexporter
   27 
   28 To use in OpenVPN:
   29 
   30 Enter openvpn/sample/sample-plugins/keyingmaterialexporter directory
   31 and in separate terminals, start these four processes:
   32 
   33 $ openvpn --config ./server.ovpn
   34 $ openvpn --config ./client.ovpn
   35 $ ./http-server.py
   36 $ ./http-client.py
   37 
   38 Test:
   39 
   40 openvpn --config ./server.ovpn
   41 ##############################
   42 
   43 PLUGIN SSO: app session created
   44 PLUGIN_CALL: POST ./keyingmaterialexporter.so/PLUGIN_TLS_VERIFY status=0
   45 PLUGIN SSO: app session key:  a5885abc84d361803f58ede1ef9c0adf99e720cd
   46 PLUGIN SSO: app session file: /tmp/openvpn_sso_a5885abc84d361803f58ede1ef9c0adf99e720cd
   47 PLUGIN SSO: app session user: Test-Client
   48 
   49 openvpn --config ./client.ovpn
   50 ##############################
   51 PLUGIN SSO: app session created
   52 PLUGIN_CALL: POST ./keyingmaterialexporter.so/PLUGIN_TLS_VERIFY status=0
   53 PLUGIN SSO: app session key:  a5885abc84d361803f58ede1ef9c0adf99e720cd
   54 PLUGIN SSO: app session file: /tmp/openvpn_sso_user
   55 PLUGIN_CALL: POST ./keyingmaterialexporter.so/PLUGIN_TLS_FINAL status=0
   56 
   57 HTTP_SERVER:
   58 http-server.py
   59 ################
   60 http server started
   61 session file: /tmp/openvpn_sso_a5885abc84d361803f58ede1ef9c0adf99e720cd
   62 10.8.0.1 - - [02/Apr/2015 15:03:33] "GET /a5885abc84d361803f58ede1ef9c0adf99e720cd HTTP/1.1" 200 -
   63 session user: Test-Client
   64 session key:  a5885abc84d361803f58ede1ef9c0adf99e720cd
   65 
   66 HTTP_SERVER:
   67 http-client.py
   68 <html><body><h1>Greetings Test-Client. You are authorized</h1></body></html>