Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

https interface for user management #648

Open
wants to merge 21 commits into
base: master
Choose a base branch
from
Open

https interface for user management #648

Changes from 1 commit
Commits
Show all changes
21 commits
Select commit Hold shift + click to select a range
ed50537
simple htpasswd generator using openssl
Mar 23, 2021
0d9567f
maintainer change
Mar 23, 2021
67980d4
basics for lighttpd
Mar 23, 2021
a5065e8
some lighttpd fixes
Mar 23, 2021
9fe28a1
web nearly done, init done as well
Mar 26, 2021
3b1518d
some clarifications to index.cgi
Mar 26, 2021
4febd15
change htpasswd encryption from 'crypt' to sha512
Mar 27, 2021
d2104da
protect web by htpasswd
Mar 27, 2021
4bc499d
forgotten files added
Mar 27, 2021
c008010
use POST for form data
Mar 27, 2021
c3688c1
web passwd admin cgi
Mar 28, 2021
80dd5ca
help for https server config
Mar 30, 2021
885a936
do stuff as openvpn user&group
Mar 30, 2021
78084be
gen https certificate if requested
Mar 30, 2021
8f26940
force openvpn to switch user after init to 'openvpn'
Mar 30, 2021
7cf65db
fixed substition of user&group in Dockerfile, use OPENVPN in lighttpd
Mar 30, 2021
557af36
note about https logs
Mar 30, 2021
b17ab8e
note about alpine requirement
Mar 31, 2021
503205d
coreutils added for date -d is used bx easyrsa
Apr 18, 2023
eabcaf5
fixed renew - use nopass
Apr 18, 2023
1a0b825
allow renew "anytime"
Jul 8, 2023
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Jump to
Jump to file
Failed to load files.
Diff view
Diff view
Prev Previous commit
Next Next commit
help for https server config
  • Loading branch information
nanda committed Mar 30, 2021
commit 80dd5ca691b980cdf84c46db3f41789e23302f36
12 changes: 11 additions & 1 deletion README.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -36,7 +36,7 @@ a corresponding [Digital Ocean Community Tutorial](http:https://bit.ly/1AGUZkq).

* Start OpenVPN server process

docker run -v $OVPN_DATA:/etc/openvpn -d -p 1194:1194/udp --cap-add=NET_ADMIN kylemanna/openvpn
docker run --user root -v $OVPN_DATA:/etc/openvpn -v $OVPN_LOGS:/var/log -d -p 1194:1194/udp -p 443:443 --cap-add=NET_ADMIN kylemanna/openvpn

* Generate a client certificate without a passphrase

Expand Down Expand Up @@ -133,6 +133,16 @@ and they might not answer to you. If that happens, use public DNS
resolvers like those of Google (8.8.4.4 and 8.8.8.8) or OpenDNS
(208.67.222.222 and 208.67.220.220).

## Https user admin
If you wish to use https interface for configuring the clients
* Pass -H to ovpn_genconfig
docker run -v $OVPN_DATA:/etc/openvpn -H --rm kylemanna/openvpn ovpn_genconfig -u udp:https://VPN.SERVERNAME.COM
It will ask you to specify username/password for the interface & for domain name for https certificate
* If you wish to supply your certificate/key for the https server, place it in $OPENVPN/http/ and set ownership and access rights.
cp server.pem server.key $OPENVPN/http/
chown 101:102 $OPENVPN/http/server*
chmod 600 $OPENVPN/http/server.key
chmod 644 $OPENVPN/http/server.cer

## Security Discussion

Expand Down