vpn-user-portal icon indicating copy to clipboard operation
vpn-user-portal copied to clipboard

Published 20 hours ago verified publisher icon eduvpn

Enable LDAP auth before connecting to VPN.

Open ZephOne opened this issue 3 years ago • 3 comments

This resolves issue https://github.com/eduvpn/vpn-user-portal/issues/182 To be merged with https://github.com/eduvpn/vpn-server-node/pull/52 and https://github.com/eduvpn/vpn-lib-common/pull/22

ZephOne avatar Feb 15 '22 16:02 ZephOne

@fkooman: What do you think about this PR?

Neustradamus avatar Jul 26 '22 11:07 Neustradamus

This is not something we want to support, we do not want to ask users for their credentials on every connect. Having the client store the credentials defeats the purpose.

However, in 3.x server we are considering supporting querying the LDAP server before allowing the client to connect to see whether the user still exists:

https://todo.sr.ht/~eduvpn/server/82

ghost avatar Jul 26 '22 11:07 ghost

In addition, we designed this feature:

https://todo.sr.ht/~eduvpn/server/78

This will delete the authorization on disconnect, and force the user to authenticate every time. This might be something you can use? If so please let us know and we'll add it as a preview feature in 3.0.5.

ghost avatar Aug 10 '22 13:08 ghost