/ - Diff - pfSense - pfSense bugtracker

« Previous | Next »

Revision a22d475f

Added by Jim Pingle almost 15 years ago

ID a22d475f113d9f46fcb5015ea76901cb30ff4a3e
Parent dc291feb
Child fe6d7a55

Let the user choose the IPsec CA instead of assuming.

     						chmod($keypath, 0600);
     						$ca = lookup_ca($cert['caref']);
     						$ca = lookup_ca($ph1ent['caref']);
     						if ($ca) {
     							$cafile = "ca-".$ikeid.".crt";
     							$capath = $g['varetc_path']."/".$cafile;

     		$pconfig['pskey'] = $a_phase1[$p1index]['pre-shared-key'];
     	} else {
     		$pconfig['certref'] = $a_phase1[$p1index]['certref'];
     		$pconfig['caref'] = $a_phase1[$p1index]['caref'];
+    	}
     	$pconfig['descr'] = $a_phase1[$p1index]['descr'];
-...
     		$reqdfields = explode(" ", "pskey");
     		$reqdfieldsn = array(gettext("Pre-Shared Key"));
     	} else {
     		$reqdfields = explode(" ", "certref");
     		$reqdfieldsn = array(gettext("My Certificate"));
     		$reqdfields = explode(" ", "caref certref");
     		$reqdfieldsn = array(gettext("Certificate Authority"),gettext("Certificate"));
+    	}
     	if (!$pconfig['mobile']) {
     		$reqdfields[] = "remotegw";
-...
     		$ph1ent['pre-shared-key'] = $pconfig['pskey'];
     		$ph1ent['private-key'] = base64_encode($pconfig['privatekey']);
     		$ph1ent['certref'] = $pconfig['certref'];
     		$ph1ent['caref'] = $pconfig['caref'];
     		$ph1ent['authentication_method'] = $pconfig['authentication_method'];
     		$ph1ent['proposal_check'] = $pconfig['proposal_check'];
     		$ph1ent['descr'] = $pconfig['descr'];
-...
     			document.getElementById('opt_psk').style.display = 'none';
     			document.getElementById('opt_peerid').style.display = '';
     			document.getElementById('opt_cert').style.display = '';
     			document.getElementById('opt_ca').style.display = '';
     			break;
     		case 'xauth_rsa_server':
     		case 'rsasig':
     			document.getElementById('opt_psk').style.display = 'none';
     			document.getElementById('opt_peerid').style.display = '';
     			document.getElementById('opt_cert').style.display = '';
     			document.getElementById('opt_ca').style.display = '';
     			break;
     <?php if ($pconfig['mobile']) { ?>
     		case 'pre_shared_key':
     			document.getElementById('opt_psk').style.display = 'none';
     			document.getElementById('opt_peerid').style.display = 'none';
     			document.getElementById('opt_cert').style.display = 'none';
     			document.getElementById('opt_ca').style.display = 'none';
     			break;
     <?php } ?>
     		default: /* psk modes*/
     			document.getElementById('opt_psk').style.display = '';
     			document.getElementById('opt_peerid').style.display = '';
     			document.getElementById('opt_cert').style.display = 'none';
     			document.getElementById('opt_ca').style.display = 'none';
     			break;
+    	}
+    }
-...
     							</span>
     						</td>
     					</tr>
     					<tr id="opt_ca">
     						<td width="22%" valign="top" class="vncellreq"><?=gettext("My Certificate Authority"); ?></td>
     						<td width="78%" class="vtable">
     							<select name='caref' class="formselect">
     							<?php
     								foreach ($config['system']['ca'] as $ca):
     									$selected = "";
     									if ($pconfig['caref'] == $ca['refid'])
     										$selected = "selected";
     							?>
     								<option value="<?=$ca['refid'];?>" <?=$selected;?>><?=$ca['name'];?></option>
     							<?php endforeach; ?>
     							</select>
     							<br>
     							<span class="vexpl">
     								<?=gettext("Select a certificate authority previously configured in the Certificate Manager"); ?>.
     							</span>
     						</td>
     					</tr>
     					<tr>
     						<td colspan="2" class="list" height="12"></td>
     					</tr>

Also available in: Unified diff

Project

General

Profile

pfSense

Revision a22d475f

Added by Jim Pingle almost 15 years ago