Linux-Help/ovpn-admin
1
0
Fork 0
mirror of synced 2024-06-27 19:31:09 -04:00
Code Issues Packages Projects Releases Wiki Activity

Compare commits

base: Linux-Help:master
Branches Tags
Linux-Help:master
Linux-Help:totp_auth-upd
Linux-Help:fix-revoke-user
Linux-Help:dependabot/go_modules/gopkg.in/yaml.v3-3.0.0
Linux-Help:update-actions-build-binary
Linux-Help:multi-platform-build
Linux-Help:dependabot/npm_and_yarn/frontend/tough-cookie-and-node-sass--removed
Linux-Help:totp_auth
Linux-Help:dependabot/npm_and_yarn/frontend/dns-packet-5.6.0
Linux-Help:dependabot/go_modules/golang.org/x/text-0.3.8
Linux-Help:dependabot/go_modules/github.com/prometheus/client_golang-1.11.1
Linux-Help:dependabot/go_modules/golang.org/x/net-0.7.0
Linux-Help:dependabot/npm_and_yarn/frontend/webpack-5.76.0
Linux-Help:dependabot/go_modules/golang.org/x/crypto-0.1.0
Linux-Help:dependabot/go_modules/golang.org/x/sys-0.1.0
Linux-Help:update-user-list-in-ha-mode
Linux-Help:2.0.2
Linux-Help:2.0.2-rc1
Linux-Help:2.0.2-rc0
Linux-Help:2.1.0-rc0
Linux-Help:2.0.1
Linux-Help:2.0.0
Linux-Help:1.7.5
Linux-Help:1.7.4
Linux-Help:1.7.3
Linux-Help:1.7.2
Linux-Help:1.7.1
Linux-Help:1.7.0
Linux-Help:1.6.2
Linux-Help:1.6.1
Linux-Help:1.6
Linux-Help:1.5.1
Linux-Help:1.5.0
Linux-Help:1.4.1
Linux-Help:1.4.0
Linux-Help:1.3.2
Linux-Help:1.3.1
Linux-Help:1.3
Linux-Help:1.2
Linux-Help:1.1
Linux-Help:1.0
..
compare: Linux-Help:2.0.2-rc0
Branches Tags
Linux-Help:master
Linux-Help:totp_auth-upd
Linux-Help:fix-revoke-user
Linux-Help:dependabot/go_modules/gopkg.in/yaml.v3-3.0.0
Linux-Help:update-actions-build-binary
Linux-Help:multi-platform-build
Linux-Help:dependabot/npm_and_yarn/frontend/tough-cookie-and-node-sass--removed
Linux-Help:totp_auth
Linux-Help:dependabot/npm_and_yarn/frontend/dns-packet-5.6.0
Linux-Help:dependabot/go_modules/golang.org/x/text-0.3.8
Linux-Help:dependabot/go_modules/github.com/prometheus/client_golang-1.11.1
Linux-Help:dependabot/go_modules/golang.org/x/net-0.7.0
Linux-Help:dependabot/npm_and_yarn/frontend/webpack-5.76.0
Linux-Help:dependabot/go_modules/golang.org/x/crypto-0.1.0
Linux-Help:dependabot/go_modules/golang.org/x/sys-0.1.0
Linux-Help:update-user-list-in-ha-mode
Linux-Help:2.0.2
Linux-Help:2.0.2-rc1
Linux-Help:2.0.2-rc0
Linux-Help:2.1.0-rc0
Linux-Help:2.0.1
Linux-Help:2.0.0
Linux-Help:1.7.5
Linux-Help:1.7.4
Linux-Help:1.7.3
Linux-Help:1.7.2
Linux-Help:1.7.1
Linux-Help:1.7.0
Linux-Help:1.6.2
Linux-Help:1.6.1
Linux-Help:1.6
Linux-Help:1.5.1
Linux-Help:1.5.0
Linux-Help:1.4.1
Linux-Help:1.4.0
Linux-Help:1.3.2
Linux-Help:1.3.1
Linux-Help:1.3
Linux-Help:1.2
Linux-Help:1.1
Linux-Help:1.0

No commits in common. "master" and "2.0.2-rc0" have entirely different histories.
master ... 2.0.2-rc0

7 changed files with 13 additions and 13 deletions
Show stats Expand all files Collapse all files

4
.github/workflows/publish-latest.yaml vendored
View file

@ -23,13 +23,13 @@ jobs:
uses: docker/build-push-action@v4
with:
tags: flant/ovpn-admin:openvpn-latest
platforms: linux/amd64,linux/arm64,linux/arm
platforms: linux/amd64,linux/arm64,linux/arm,linux/386
file: Dockerfile.openvpn
push: true
- name: Push ovpn-admin image to Docker Hub
uses: docker/build-push-action@v4
with:
tags: flant/ovpn-admin:latest
platforms: linux/amd64,linux/arm64,linux/arm
platforms: linux/amd64,linux/arm64,linux/arm,linux/386
file: Dockerfile
push: true

4
.github/workflows/publish-tag.yaml vendored
View file

@ -27,13 +27,13 @@ jobs:
uses: docker/build-push-action@v4
with:
tags: flant/ovpn-admin:openvpn-${{ steps.get_version.outputs.VERSION }}
platforms: linux/amd64,linux/arm64,linux/arm
platforms: linux/amd64,linux/arm64,linux/arm,linux/386
file: Dockerfile.openvpn
push: true
- name: Push ovpn-admin image to Docker Hub
uses: docker/build-push-action@v4
with:
tags: flant/ovpn-admin:${{ steps.get_version.outputs.VERSION }}
platforms: linux/amd64,linux/arm64,linux/arm
platforms: linux/amd64,linux/arm64,linux/arm,linux/386
file: Dockerfile
push: true

2
.github/workflows/release.yaml vendored
View file

@ -17,7 +17,7 @@ jobs:
- name: checkout code
uses: actions/checkout@v2
- name: build binaries
uses: wangyoucao577/go-release-action@v1.40
uses: wangyoucao577/go-release-action@v1.28
with:
github_token: ${{ secrets.GITHUB_TOKEN }}
goversion: 1.17

2
.github/workflows/release_arm.yaml vendored
View file

@ -17,7 +17,7 @@ jobs:
- name: checkout code
uses: actions/checkout@v2
- name: build binaries
uses: wangyoucao577/go-release-action@v1.40
uses: wangyoucao577/go-release-action@v1.28
with:
github_token: ${{ secrets.GITHUB_TOKEN }}
goversion: 1.17

2
README.md
View file

@ -2,7 +2,7 @@
Simple web UI to manage OpenVPN users, their certificates & routes in Linux. While backend is written in Go, frontend is based on Vue.js.
Originally created in [Flant](https://flant.com/) for internal needs & used for years, then updated to be more modern and [publicly released](https://medium.com/flant-com/introducing-ovpn-admin-a-web-interface-to-manage-openvpn-users-d81705ad8f23) in March'21. Your contributions are welcome!
Originally created in [Flant](https://flant.com/) for internal needs & used for years, then updated to be more modern and [publicly released](https://blog.flant.com/introducing-ovpn-admin-web-interface-for-openvpn/) in March'21. Your contributions are welcome!
***DISCLAIMER!** This project was created for experienced users (system administrators) and private (e.g., protected by network policies) environments only. Thus, it is not implemented with security in mind (e.g., it doesn't strictly check all parameters passed by users, etc.). It also relies heavily on files and fails if required files aren't available.*

10
main.go
View file

@ -49,7 +49,7 @@ const (
var (
listenHost = kingpin.Flag("listen.host", "host for ovpn-admin").Default("0.0.0.0").Envar("OVPN_LISTEN_HOST").String()
listenPort = kingpin.Flag("listen.port", "port for ovpn-admin").Default("8080").Envar("OVPN_LISTEN_PORT").String()
listenBaseUrl = kingpin.Flag("listen.base-url", "base url for ovpn-admin").Default("/").Envar("OVPN_LISTEN_BASE_URL").String()
listenBaseUrl = kingpin.Flag("listen.base-url", "base url for ovpn-admin").Default("/").Envar("OVPN_LISTEN_BASE_URL").String()
serverRole = kingpin.Flag("role", "server role, master or slave").Default("master").Envar("OVPN_ROLE").HintOptions("master", "slave").String()
masterHost = kingpin.Flag("master.host", "URL for the master server").Default("http://127.0.0.1").Envar("OVPN_MASTER_HOST").String()
masterBasicAuthUser = kingpin.Flag("master.basic-auth.user", "user for master server's Basic Auth").Default("").Envar("OVPN_MASTER_USER").String()
@ -64,7 +64,7 @@ var (
metricsPath = kingpin.Flag("metrics.path", "URL path for exposing collected metrics").Default("/metrics").Envar("OVPN_METRICS_PATH").String()
easyrsaDirPath = kingpin.Flag("easyrsa.path", "path to easyrsa dir").Default("./easyrsa").Envar("EASYRSA_PATH").String()
indexTxtPath = kingpin.Flag("easyrsa.index-path", "path to easyrsa index file").Default("").Envar("OVPN_INDEX_PATH").String()
easyrsaBinPath = kingpin.Flag("easyrsa.bin-path", "path to easyrsa script").Default("easyrsa").Envar("EASYRSA_BIN_PATH").String()
easyrsaBinPath = kingpin.Flag("easyrsa.bin-path", "path to easyrsa script").Default("easyrsa").Envar("EASYRSA_BIN_PATH").String()
ccdEnabled = kingpin.Flag("ccd", "enable client-config-dir").Default("false").Envar("OVPN_CCD").Bool()
ccdDir = kingpin.Flag("ccd.path", "path to client-config-dir").Default("./ccd").Envar("OVPN_CCD_PATH").String()
clientConfigTemplatePath = kingpin.Flag("templates.clientconfig-path", "path to custom client.conf.tpl").Default("").Envar("OVPN_TEMPLATES_CC_PATH").String()
@ -854,7 +854,7 @@ func (oAdmin *OvpnAdmin) getCcd(username string) Ccd {
}
func checkStaticAddressIsFree(staticAddress string, username string) bool {
o := runBash(fmt.Sprintf("grep -rl ' %[1]s ' %[2]s | grep -vx %[2]s/%[3]s | wc -l", staticAddress, *ccdDir, username))
o := runBash(fmt.Sprintf("grep -rl ' %s ' %s | grep -vx %s/%s | wc -l", staticAddress, *ccdDir, *ccdDir, username))
if strings.TrimSpace(o) == "0" {
return true
@ -1004,7 +1004,7 @@ func (oAdmin *OvpnAdmin) userCreate(username, password string) (bool, string) {
func (oAdmin *OvpnAdmin) userChangePassword(username, password string) (error, string) {
if checkUserExist(username) {
o := runBash(fmt.Sprintf("openvpn-user check --db.path %[1]s --user %[2]s | grep %[2]s | wc -l", *authDatabase, username))
o := runBash(fmt.Sprintf("openvpn-user check --db.path %s --user %s | grep %s | wc -l", *authDatabase, username, username))
log.Debug(o)
if err := validatePassword(password); err != nil {
@ -1048,7 +1048,7 @@ func (oAdmin *OvpnAdmin) userRevoke(username string) (error, string) {
log.Error(err)
}
} else {
o := runBash(fmt.Sprintf("cd %[1]s && echo yes | %[2]s revoke %[3]s 1>/dev/null && %[2]s gen-crl 1>/dev/null", *easyrsaDirPath, *easyrsaBinPath, username))
o := runBash(fmt.Sprintf("cd %s && echo yes | easyrsa revoke %s 1>/dev/null && %s gen-crl 1>/dev/null", *easyrsaDirPath, *easyrsaBinPath, username))
log.Debugln(o)
}

2
start.sh
View file

@ -1,3 +1,3 @@
#!/usr/bin/env bash
docker compose -p openvpn-master up -d --build
docker-compose -p openvpn-master up -d --build