Page 1 of 1
openvpn remote authentication via bash script
Posted: Tue Sep 13, 2011 7:52 am
by eric66300
hi
im using cent OS 5.6 and im a confused how it's to be done exactly the way i want it to be.
can somebody help me?
i put this on server side
auth-user-pass-verify "/etc/openvpn/auth_vpn.sh" via-file
and put this code inside auth_vpn.sh
#!/bin/bash
### Database Informations
DBUSER='user'
DBPASS='pass'
DBHOST='x.x.x.x'
DBNAME='dbase'
user_name=`head -n1 $1 | tail -1` #first line -> Username
pass_word=`head -n2 $1 | tail -1 ` #second line -> Password
user_query=`mysql -u $DBUSER -p$DBPASS -D $DBNAME -h $DBHOST --skip-column-name -e "SELECT username FROM user WHERE ( (active = '1') AND (username = '$user_name') AND (password = ('$pass_word')) );" $DBNAME`
if [ "$user_query" == "$user_name" ]; then
exit 0
else
exit 1
fi
pls help me
thank you
Re: openvpn remote authentication via bash script
Posted: Tue Sep 13, 2011 7:58 am
by janjust
did you debug the script?
what happens if you print out the username+password after reading them from file - are they correct?
what happens if you manually execute the mysql query with the username+password?
this is a forum about openvpn , not about mysql/shell script debugging...
Re: openvpn remote authentication via bash script
Posted: Wed Sep 14, 2011 8:19 am
by eric66300
Hi
sorry for my ignorance how may i print out the result after reading it from file?
tying to execute mysql both username and password are correct.
Re: openvpn remote authentication via bash script
Posted: Wed Sep 14, 2011 8:48 am
by janjust
add these lines
Code: Select all
user_name=`head -n1 $1 | tail -1` #first line -> Username
pass_word=`head -n2 $1 | tail -1 ` #second line -> Password
# add these lines
echo "user_name=[$user_name]"
echo "pass_word=[$pass_word]"
and check to see that the right values are there. Adding things like
to the script will also produce lots of debugging output
Re: openvpn remote authentication via bash script
Posted: Wed Sep 14, 2011 12:07 pm
by eric66300
thanks i got to try it tomorrow
too busy today.
thank you again
Re: openvpn remote authentication via bash script
Posted: Thu Sep 15, 2011 7:08 am
by eric66300
./auth_vpn.sh: line 11: unexpected EOF while looking for matching
./auth_vpn.sh: line 18: synteax error: enexpected end of file
head: cannot open 'database' for reading: No such file or directory
head: cannot open 'database' for reading: No such file or directory
but what weird later i got authenticated using this script dont know what i did just it happen then tried to insert another data to the database and BOOM!! can't authenticate again.
ooppsss i put this code and it works for i little time
auth-user-pass-verify "/etc/openvpn/auth_vpn.sh" via-env
i change
via-file into
via-env
did i miss something?
Re: openvpn remote authentication via bash script
Posted: Thu Sep 15, 2011 7:16 am
by janjust
i change via-file into via-env
that means the username+password will be available via env vars, but you must add
to the openvpn server config if you have not already done so.
If you want to try it using 'via-file' then create a sample password file
/tmp/password containing only:
then run
Code: Select all
bash -vx /etc/openvpn/auth_vpn.sh /tmp/password
and look for any errors.
Re: openvpn remote authentication via bash script
Posted: Thu Sep 15, 2011 8:09 am
by eric66300
got error
/etc/openvpn/auth_vpn.sh: line 11: unexpected EOF while looking for matching
/etc/openvpn/auth_vpn.sh: line 20: syntax error: unexpected EOF while looking for matching
wew kinda got headache
Re: openvpn remote authentication via bash script
Posted: Thu Sep 15, 2011 8:36 am
by eric66300
do you have alternative way to authenticate user via mysql?
i built database and open port for this remote connection
Re: openvpn remote authentication via bash script
Posted: Thu Sep 15, 2011 12:38 pm
by janjust
this is a scripting error, not an openvpn error; if you don't know how to write a script to talk to a mysql database then you might be better of asking your questions on a scripting/mysql forum.
Re: openvpn remote authentication via bash script
Posted: Sat Oct 01, 2011 6:27 am
by eric66300
Hi
Wanna say thank you to you without you i can't figure out what's wrong on our sql query
your the best sir
now our code is perfectly working now
Re: openvpn remote authentication via bash script
Posted: Tue Mar 06, 2012 4:24 pm
by padhu
eric66300 wrote:Hi
Wanna say thank you to you without you i can't figure out what's wrong on our sql query
your the best sir
now our code is perfectly working now
Can you please share your solution here.I am having same problem.
Re: openvpn remote authentication via bash script
Posted: Sat Mar 17, 2012 4:02 am
by esson
Please share~
