[ previous ] [ next ] [ threads ]
 From:  Stephane Billiart <stephane dot billiart at gmail dot com>
 To:  m0n0wall dash dev at lists dot m0n0 dot ch
 Subject:  cleanup/logout patch and RFC
 Date:  Tue, 8 Sep 2009 13:56:45 -0400
Hi, I am new to the list.
I used m0n0wall a few years ago and started playing with it again recently.

I really like the overall features and ease of administration of m0n0wall
but I have a few issues:
- no logout page (I do not like the popup)
- no way for local users to change their password
- user authentication is local (x)or radius, I would like to be able
  to check local users first then radius
- captive portal on only one interface

I started working on the first item and attached are two patches for
/usr/local/captiveportal/index.php, they should apply cleanly against

The first patch is just some minor cleanups (removing trailing white
spaces) and code simplification of http/https handling.

The second patch adds a 'status' page when a connected user connects
his browser to the portal and allows him to logout as well.
When a user logs in, a cookie with the sessionid is sent to the browser
which allows the script to find users securely. I had to make minor
modification to the popup code so that it can coexist with the new
logout form.

I am now working on making the status page configurable so that admin
can modify it easily (add/remove some session information, add a password
change form...) but I have not figured out all the details yet.

I would be grateful if people could review and comment on these patches
and consider them for inclusion after corrections.

Thank you,

Stéphane Billiart                      http://perso.orange.fr/billiart/