On 2021/06/02 16:08, Landry Breuil wrote:
> Le Mon, May 31, 2021 at 04:57:49PM +0200, Landry Breuil a écrit :
> > Hi,
> >
> > there's been a new release on github in 2019, after the last one we're
> > still shipping from 2007.. cf
> > https://github.com/threerings/openvpn-auth-ldap/releases/tag/auth-ldap-2.0.4
> >
> > i know nothing to obj-c so i randomly poked thing around until this
> > built fine. runtime testing welcome, as apparently the "modern runtime"
> > patches didnt make it upstream anyway. Remove some patches while here,
> > but dunno if they're needed at runtime.. ccing our objc expert :)
>
> fwiw, after *light* testing with the diff backported to 6.9, it *seems*
> this work:
>
> 2021-06-02 15:59:50 us=135854 172.20.85.209:39294 PLUGIN_CALL: POST /usr/local/lib/openvpn-auth-ldap.so/PLUGIN_AUTH_USER_PASS_VERIFY status=0
> 2021-06-02 15:59:50 us=136495 172.20.85.209:39294 TLS: Username/Password authentication succeeded for username 'breuil'
>
> but i dont have a complicated ldap setup with groups etc.
>
> compared to the previous diff, sthen@ fixed a thinko from my part:
> PKGNAME = openvpn-${GH_TAGNAME}
>
> besides that, i was thinking that maybe it would make sense to move the
> plugin from /usr/local/lib/openvpn-auth-ldap.so to
> /usr/local/lib/openvpn/plugins/auth-ldap.so as that's where openvpn
> stores its plugins, but .. *shrug*
>
> Now looking for okays from the openvpn/obj-c crowd :)
>
> Landry
>
I think the obj-c crowd is covid-safe even if only in a small room ;)
Moving to /usr/local/lib/openvpn/plugins/auth-ldap.so makes sense to me
though presumably any existing users will need to adjust to cope with
the move ..
No comments:
Post a Comment