WebSVN – ALCASAR – Diff – /scripts/alcasar-https.sh


#!/bin/bash
# $Id: alcasar-https.sh 3225 2024-08-28 21:22:11Z rexy $
 
# alcasar-https.sh
# by Rexy
# This script is distributed under the Gnu General Public License (GPL)
 
# active ou désactive le chiffrement sur les flux d'authentification
# enable or disable encryption on authentication flows
 
SED="/bin/sed -i"
CONF_FILE="/usr/local/etc/alcasar.conf"
CHILLI_CONF_FILE="/etc/chilli.conf"
HOSTNAME=$(grep ^HOSTNAME= $CONF_FILE | cut -d'=' -f2)
DOMAIN=$(grep ^DOMAIN= $CONF_FILE | cut -d'=' -f2)
 
usage="Usage: alcasar-https.sh {--on | -on} | {--off | -off}"
nb_args=$#
args=$1
if [ $nb_args -eq 0 ]
then
	echo "$usage"
	exit 1
fi
 
case $args in
	-\? | -h* | --h*)
		echo "$usage"
		exit 0
		;;
	--off | -off)	# Chilli : disable HTTPS (it will listen only on 3990 port) + lighttpd : switch with an HTTP conf file
		$SED "s?^HTTPS_LOGIN=.*?HTTPS_LOGIN=off?" $CONF_FILE
		$SED "s?^HTTPS_CHILLI=.*?HTTPS_CHILLI=off?" $CONF_FILE
		$SED "s?^uamserver.*?uamserver\thttp://$HOSTNAME.$DOMAIN/intercept.php?" $CHILLI_CONF_FILE
		$SED "s?^redirssl.*?#&?" $CHILLI_CONF_FILE
		$SED "s?^uamuissl.*?#&?" $CHILLI_CONF_FILE
		/usr/bin/systemctl restart chilli
		rm -f /etc/lighttpd/vhosts.d/alcasar.conf
		ln -s /etc/lighttpd/vhosts.d/alcasar-without-ssl.conf /etc/lighttpd/vhosts.d/alcasar.conf
		/usr/bin/systemctl restart lighttpd
		;;
	--on | -on)	# Chilli : enable HTTPS (it will listen on ports 3990 (http) and 3991 (https) + lighttpd : switch with an HTTPS conf file
		$SED "s?^HTTPS_LOGIN=.*?HTTPS_LOGIN=on?" $CONF_FILE
		$SED "s?^HTTPS_CHILLI=.*?HTTPS_CHILLI=on?" $CONF_FILE
		$SED "s?^uamserver.*?uamserver\thttps://$HOSTNAME.$DOMAIN/intercept.php?" $CHILLI_CONF_FILE
		$SED "s?^#redirssl.*?redirssl?" $CHILLI_CONF_FILE
		$SED "s?^#uamuissl.*?uamuissl?" $CHILLI_CONF_FILE
		/usr/bin/systemctl restart chilli
		rm -f /etc/lighttpd/vhosts.d/alcasar.conf
		ln -s /etc/lighttpd/vhosts.d/alcasar-with-ssl.conf /etc/lighttpd/vhosts.d/alcasar.conf
		/usr/bin/systemctl restart lighttpd
		;;
	*)
		echo "Argument inconnu : $1"
		echo "$usage"
		exit 1
		;;
esac
 

Subversion Repositories ALCASAR

(root)/scripts/alcasar-https.sh @ 2968 – Rev 2920 → 3225

Rev 2920		Rev 3225
1	`#!/bin/bash`	1	`#!/bin/bash`
2	`# $Id: alcasar-https.sh 2920 2021-02-22 09:56:30Z rexy $`	2	`# $Id: alcasar-https.sh 3225 2024-08-28 21:22:11Z rexy $`
3		3
4	`# alcasar-dhcp.sh`	4	`# alcasar-https.sh`
5	`# by Rexy`	5	`# by Rexy`
6	`# This script is distributed under the Gnu General Public License (GPL)`	6	`# This script is distributed under the Gnu General Public License (GPL)`
7		7
8	`# active ou désactive le chiffrement sur les flux d'authentification`	8	`# active ou désactive le chiffrement sur les flux d'authentification`
9	`# enable or disable encryption on authentication flows`	9	`# enable or disable encryption on authentication flows`
10		10
11	`SED="/bin/sed -i"`	11	`SED="/bin/sed -i"`
12	`CONF_FILE="/usr/local/etc/alcasar.conf"`	12	`CONF_FILE="/usr/local/etc/alcasar.conf"`
13	`CHILLI_CONF_FILE="/etc/chilli.conf"`	13	`CHILLI_CONF_FILE="/etc/chilli.conf"`
14	`HOSTNAME=$(grep ^HOSTNAME= $CONF_FILE \| cut -d'=' -f2)`	14	`HOSTNAME=$(grep ^HOSTNAME= $CONF_FILE \| cut -d'=' -f2)`
15	`DOMAIN=$(grep ^DOMAIN= $CONF_FILE \| cut -d'=' -f2)`	15	`DOMAIN=$(grep ^DOMAIN= $CONF_FILE \| cut -d'=' -f2)`
16		16
17	`usage="Usage: alcasar-https.sh {--on \| -on} \| {--off \| -off}"`	17	`usage="Usage: alcasar-https.sh {--on \| -on} \| {--off \| -off}"`
18	`nb_args=$#`	18	`nb_args=$#`
19	`args=$1`	19	`args=$1`
20	`if [ $nb_args -eq 0 ]`	20	`if [ $nb_args -eq 0 ]`
21	`then`	21	`then`
22	`echo "$usage"`	22	`echo "$usage"`
23	`exit 1`	23	`exit 1`
24	`fi`	24	`fi`
25		25
26	`case $args in`	26	`case $args in`
27	`-\? \| -h* \| --h*)`	27	`-\? \| -h* \| --h*)`
28	`echo "$usage"`	28	`echo "$usage"`
29	`exit 0`	29	`exit 0`
30	`;;`	30	`;;`
31	`--off \| -off) # Chilli : disable HTTPS (it will listen only on 3990 port) + lighttpd : switch with an HTTP conf file`	31	`--off \| -off) # Chilli : disable HTTPS (it will listen only on 3990 port) + lighttpd : switch with an HTTP conf file`
32	`$SED "s?^HTTPS_LOGIN=.*?HTTPS_LOGIN=off?" $CONF_FILE`	32	`$SED "s?^HTTPS_LOGIN=.*?HTTPS_LOGIN=off?" $CONF_FILE`
33	`$SED "s?^HTTPS_CHILLI=.*?HTTPS_CHILLI=off?" $CONF_FILE`	33	`$SED "s?^HTTPS_CHILLI=.*?HTTPS_CHILLI=off?" $CONF_FILE`
34	`$SED "s?^uamserver.*?uamserver\thttp://$HOSTNAME.$DOMAIN/intercept.php?" $CHILLI_CONF_FILE`	34	`$SED "s?^uamserver.*?uamserver\thttp://$HOSTNAME.$DOMAIN/intercept.php?" $CHILLI_CONF_FILE`
35	`$SED "s?^redirssl.*?#&?" $CHILLI_CONF_FILE`	35	`$SED "s?^redirssl.*?#&?" $CHILLI_CONF_FILE`
36	`$SED "s?^uamuissl.*?#&?" $CHILLI_CONF_FILE`	36	`$SED "s?^uamuissl.*?#&?" $CHILLI_CONF_FILE`
37	`/usr/bin/systemctl restart chilli`	37	`/usr/bin/systemctl restart chilli`
38	`rm -f /etc/lighttpd/vhosts.d/alcasar.conf`	38	`rm -f /etc/lighttpd/vhosts.d/alcasar.conf`
39	`ln -s /etc/lighttpd/vhosts.d/alcasar-without-ssl.conf /etc/lighttpd/vhosts.d/alcasar.conf`	39	`ln -s /etc/lighttpd/vhosts.d/alcasar-without-ssl.conf /etc/lighttpd/vhosts.d/alcasar.conf`
40	`/usr/bin/systemctl restart lighttpd`	40	`/usr/bin/systemctl restart lighttpd`
41	`;;`	41	`;;`
42	`--on \| -on) # Chilli : enable HTTPS (it will listen on ports 3990 (http) and 3991 (https) + lighttpd : switch with an HTTPS conf file`	42	`--on \| -on) # Chilli : enable HTTPS (it will listen on ports 3990 (http) and 3991 (https) + lighttpd : switch with an HTTPS conf file`
43	`$SED "s?^HTTPS_LOGIN=.*?HTTPS_LOGIN=on?" $CONF_FILE`	43	`$SED "s?^HTTPS_LOGIN=.*?HTTPS_LOGIN=on?" $CONF_FILE`
44	`$SED "s?^HTTPS_CHILLI=.*?HTTPS_CHILLI=on?" $CONF_FILE`	44	`$SED "s?^HTTPS_CHILLI=.*?HTTPS_CHILLI=on?" $CONF_FILE`
45	`$SED "s?^uamserver.*?uamserver\thttps://$HOSTNAME.$DOMAIN/intercept.php?" $CHILLI_CONF_FILE`	45	`$SED "s?^uamserver.*?uamserver\thttps://$HOSTNAME.$DOMAIN/intercept.php?" $CHILLI_CONF_FILE`
46	`$SED "s?^#redirssl.*?redirssl?" $CHILLI_CONF_FILE`	46	`$SED "s?^#redirssl.*?redirssl?" $CHILLI_CONF_FILE`
47	`$SED "s?^#uamuissl.*?uamuissl?" $CHILLI_CONF_FILE`	47	`$SED "s?^#uamuissl.*?uamuissl?" $CHILLI_CONF_FILE`
48	`/usr/bin/systemctl restart chilli`	48	`/usr/bin/systemctl restart chilli`
49	`rm -f /etc/lighttpd/vhosts.d/alcasar.conf`	49	`rm -f /etc/lighttpd/vhosts.d/alcasar.conf`
50	`ln -s /etc/lighttpd/vhosts.d/alcasar-with-ssl.conf /etc/lighttpd/vhosts.d/alcasar.conf`	50	`ln -s /etc/lighttpd/vhosts.d/alcasar-with-ssl.conf /etc/lighttpd/vhosts.d/alcasar.conf`
51	`/usr/bin/systemctl restart lighttpd`	51	`/usr/bin/systemctl restart lighttpd`
52	`;;`	52	`;;`
53	`*)`	53	`*)`
54	`echo "Argument inconnu : $1"`	54	`echo "Argument inconnu : $1"`
55	`echo "$usage"`	55	`echo "$usage"`
56	`exit 1`	56	`exit 1`
57	`;;`	57	`;;`
58	`esac`	58	`esac`
59		59