pfSense: Fix missing global decl in captiveportal_get_last_activity. Fixes #13147
Captive Portal per user bandwidths fix. Issue #13150
Captive Portal host remove fix. Issue #13146
Correct CP status function call. Fixes #13123
Correct CP status function call. Fixes #13122
pfSense: Utilize pf captiveportal funcs from php-pfSense - Feature #12945
Captive Portal remove unused ipfw code. Todo #13100
Captive Portal ipfw->pf transition. Todo #13100
Revert "captiveportal: fix ipfw rules"
This reverts commit 9dac41af43a5b977a604098688776987c4f76722.
Update the Copyright year of the files owned by Rubicon/Netgate.
Add tag 1 to Captive Portal passthrough MAC table. Fixes #12615
Remove stale captiveportal_online_users file on boot. Fixes #12455
Reset CP DB on unclean shutdown if preservedb option is not enabled. Fixes #12355
captiveportal: fix ipfw rules
When we authorise a client we add it to the *auth(up|down) tables.This means traffic will pass and not be forwarded, as piped traffic doesnot pass through the firewall again (if net.inet.ip.fw.one_pass is set).
However, these rules are 'layer2', so when the traffic is passed it's...
Portal logout updates. Fixes #12138
Portal Redir URL scheme check. Fixes #11843
Fix variable being used before assignment. Fixes #11842
Improve Captive Portal redirect URL handling.
route_del() optimization. Issue #11475
Captive Portal custom logo fix. Issue #11360
Update the Copyright year.
A subsequent commit will deal with .po's.
Avoid flooding the logs
Ticket #9270: Make sure parameters are UTF-8
As described on ticket, for some reason we still don't know, whenpfSense_kill_states() is called with subnet as parameter (n.n.n.n/n) itmakes changes on $_POST content that can lead system to unpredictableresults....
Merge pull request #4326 from vktg/voucherviaurl
Allow to submit voucher via URL. Implements #1984
Rework route functions
- Created route_table() that returns an array containing all items from route table. It uses --libxo to get a json object- Created route_get() that return an array with route items to desired target- Created route_get_default() to get current default route for inet or...
Captive Portal UsedMACs sync. Issue #10857
Merge pull request #4386 from vktg/captivednsmultiip
Fix unparenthesized expression deprecation notice
Allowed Hostnames add/delete multiple A entries. Fixes #10724
Block additional Captive Portal Logins. Implements #9432
Merge pull request #4322 from vktg/captivedisableperuserbw
Merge pull request #4323 from vktg/captiveautomacfix
Captive Portal keep Pass-through MAC Auto Entry. Issue #9933
Captive Portal per-user bandwidth input validation fix. Issue #9311
Refresh connected users on primary when becoming master node.Redmine #97
Forward "Disconnect all" to the other nodeRedmine #97
Forward an user disconnection to the other nodeRedmine #97
Forward an user connection to the backup nodeRedmine #97
Do not perform RADIUS accounting/prune operations when node is in backup modeImplement Redmine #97
Create a new page dedicated to backward syncImplement Redmine #97
Fix backward vouchers synchronizationRedmine #7972
Merge pull request #4149 from Augustin-FL/nginx
Wait 0.2 seconds after stopping Nginx.Redmine #10159
This is 2020. Issue #9245
Fix random typos
Merge pull request #4042 from plumbeo/fix-reconfig
Fix copyright message years to reflect BSDP -> ESF -> Netgate
Captive portal: fix locking when reinitialising rules
Don't take the lock in captiveportal_init_rules() ifcaptiveportal_configure_zone() has already taken it.
Captive portal: don't reset auth rules unless actually needed
Captive portal: make possible to preserve authorized users' rules and pipes
Merge pull request #4024 from plumbeo/fix-session-timeout
Merge pull request #4054 from Augustin-FL/save-users-accross-reboot
Restore connected users on boot when associated setting is enabledImplement redmine #5644
Add allowed bandwith settings to sqlite DBImplement redmine #5644
do not look for other servers when an auth is successfulfix #9255
Update copyright notices to 2019. Happy New Year
Captive portal: fix per-user traffic quotas
Don't overwrite the global traffic quota value with a user's radius-provided valuethat would then be reused in the same run for users without a custom quota.
Captive portal: fix per-user session timeouts
Don't overwrite the global session timeout value with a user's radius-provided timeoutthat would then be reused in the same run for users without a custom session timeout.
Merge pull request #4016 from Augustin-FL/captiveportal-spelling
Merge pull request #9131 from Augustin-FL/patch-accounting
Fix few spelling issuesTicket #9134
Send MAC address as username if radmac is used for connecting an userTicket #9131
Merge pull request #4000 from Augustin-FL/patch-cp-3
Restore the RADIUS NAS ID option to Captive Portal. Fixes #8998
Keeps the default of using CaptivePortal-<zonename> when not set,otherwise uses the value supplied by the user as with older versions.
generate a flag even if trying to perform RADIUS MAC authentication on a non-RADIUS server.
Implement login fallback for RADIUS MAC authentication
Include zone name in Nas-Identifier
Automatically store username of the MAC created pass-through
Revise T&C text area height
Fix syntax
Merge pull request #3972 from Augustin-FL/patch-passthrough
Added PORTAL_MESSAGE to template, fixed some wording and styling
Readded second authentication type to default captiveportal login
Disconnect and remove previous Pass-Through MAC address when both Disable concurrent logins and passthrough MAC addition are enabled
Updated captive portal to use a template with customizable image uploads
Co-authored-by: Felix Häberle <felixhaeberle@users.noreply.github.com>
Update captiveportal RADIUS Accounting
Make captiveportal use user manager as auth source
Normalize RADIUS accounting
Fix #7024: Deprecate /etc/inc/radius.inc in favor of pear-Auth_RADIUS port
fix #8441;
ipfw rules must be deleted before cp record delete.
Captive portal: add option to choose whether to use the bandwidth limits retrieved from RADIUS or not
Automatically upgrade config to preserve old RADIUS bandwidth limits behaviour on existing installations.
Captive portal: add the explicit reason why a user was disconnected to the log
Captive portal: add option to retrieve the traffic quota value from RADIUS
Add an option to enable retrieving a user's traffic quota from RADIUS. The code uses a new vendor-specific attribute so the RADIUS server must be configured appropriately and load the pfSense dictionary.
Captive portal: add a traffic quota option
Add a new option to disconnect users after they exceed a traffic quota (sum of downloaded data and uploaded data).
Captive portal: always use the RADIUS-provided session timeout value if the option is enabled
Fix #7972
Rework the way Captive Portal vouchers are synchronized on HA:
- When voucher use is enabled on primary, do the same on secondary- When voucher rolls are created/modified/deleted, sync to secondary- When voucher is used, disconnected or expired, sync it in both...
Break some long lines
Fix #8317
Verify if pipes were created in current system before attempt to removethem
Do no try to lock when file doesn't exist
Implement dry_run mode in captiveportal_free_dnrules()
To be used later on a fix for ticket #8317 just return the arraycontaining pipes to be removed without removing them fromcaptiveportaldn.rules
Fixed #8226 Check for MAC duplicates
loop through auto pass MAC addresses for duplicatesbefore automatically adding a pass thru.
Update the Copyright notice for pfSense.
Add missing $cpzone declaration. Fixes #8238
Ensure that the value passed to ipfw pipes is always an integer, no matter the source. Fixes #8097
Disable HSTS for captive portals
Revert "Do not associate IP and MAC on down table. It should help #7813 and #7833"
This reverts commit aa61ecfde0952ed1c3a035ac9489f5a5f9c51425.
Do not associate IP and MAC on down table. It should help #7813 and #7833
Revert "Update translation files"
Bad commit log
This reverts commit ff8d44d194b6a5ada8fcd2aafe8c7ec358a7adae.
Update translation files