gof5 icon indicating copy to clipboard operation
gof5 copied to clipboard

Published 20 hours ago verified publisher icon kayrus

Parse f5vpn urls

Open fwiesel opened this issue 2 years ago • 3 comments

After an endpoint-inspection, the webpage forwards to an f5vpn url, which can now be passed on to gof5 to extract the session-id itself.

Only missing to be a proper f5vpn handler is logging

fwiesel avatar Mar 11 '22 10:03 fwiesel

@fwiesel can you provide an f5vpn URL example? I haven't seen it before.

kayrus avatar Mar 26 '22 11:03 kayrus

Sure, it seems to have the following pattern: f5-vpn://<server-fqdn>?server=<server-fqdn>&resourcename=<resource-path-with-slashes>&resourcetype=network_access&cmd=launch&protocol=https&port=443&sid=<32*n>&token=<32-hex>&otc=<32-hex>&otc=<32-hex>

I assume, OTC seems to stand for one-time-code, and we get two of them. The sid is presumably session-id, and it is bogus, as we provide it.

fwiesel avatar Mar 28 '22 12:03 fwiesel

Just as a voice of support for this PR. For nearly two months I've been using this PR to enable me to use gof5 with a F5 VPN endpoint that uses a web page based authentication flow.

It has consistently worked 100% of the time.

chadcatlett avatar May 04 '24 00:05 chadcatlett