2965 |
1286 d 4 h |
rexy |
/repos/alcasar/trunk/ |
In multiwan mode, ACC/actvity page displays the gateway of each authenticated system |
|
2956 |
1327 d 6 h |
rexy |
/repos/alcasar/trunk/ |
Multi-WAN access with load balancing per user (Thx to Pierre RIVAULT for this great job) |
|
2896 |
1492 d 3 h |
rexy |
/repos/alcasar/trunk/ |
- Add attribute "allow user's devices" in ACC
- Improve the "test script" to manage user with shell |
|
2886 |
1509 d 3 h |
rexy |
/repos/alcasar/trunk/ |
- Prepare the new behaviour : "remember user equipment" |
|
2883 |
1517 d 5 h |
rexy |
/repos/alcasar/trunk/ |
Bug : Fix when users are disconnected even if they don't need to keep "status_page" open |
|
2841 |
1657 d 4 h |
rexy |
/repos/alcasar/trunk/ |
Renaming ipset (without havp) |
|
2712 |
2133 d 3 h |
tom.houdayer |
/repos/alcasar/trunk/ |
Fix: get attributes of additional groups in conup/condown |
|
2692 |
2177 d 3 h |
tom.houdayer |
/repos/alcasar/trunk/ |
Fix ignored filters assigned to the default group |
|
2505 |
2497 d 12 h |
tom.houdayer |
/repos/alcasar/trunk/ |
Rename RADIUS attributes: "Alcasar-Filter-Proto" to "Alcasar-Protocols-Filter" and "Alcasar-Status-Open-Required" to "Alcasar-Status-Page-Must-Stay-Open" |
|
2501 |
2509 d 2 h |
tom.houdayer |
/repos/alcasar/trunk/ |
Explode the "Filter-Id" RADIUS attribute into ALCASAR vendor attributes (they can now be set independently and with a good user/group priority) |
|
2394 |
2693 d 13 h |
tom.houdayer |
/repos/alcasar/trunk/ |
The disconnection of users without the status page open can be disabled by a user attribute |
|
2376 |
2704 d 7 h |
tom.houdayer |
/repos/alcasar/trunk/ |
IP address of active users are properly clean from "current_users.txt" |
|
2262 |
2783 d 6 h |
tom.houdayer |
/repos/alcasar/trunk/scripts/ |
Add/fix SVN keywords to scripts/*.sh (svn:eol-style=LF & svn:executable=*) |
|
2249 |
2790 d 5 h |
tom.houdayer |
/repos/alcasar/trunk/scripts/ |
Fix blacklist and whitelist (fix ipset assignment with correct filter priority) |
|
2234 |
2794 d 5 h |
richard |
/repos/alcasar/trunk/ |
Coova HTTPS interception enabled (remove our DNS blackhole system) : waiting for Tom RPM ;-) |
|
2184 |
2816 d 9 h |
richard |
/repos/alcasar/trunk/ |
uamallowed domain works again |
|
2079 |
2962 d 11 h |
raphael.pion |
/repos/alcasar/trunk/scripts/ |
Génération des journaux d'imputabilités (inversion des colonnes upload <-> download)
Ajout de commentaires |
|
2069 |
2981 d 8 h |
richard |
/repos/alcasar/trunk/scripts/ |
Mise à jour du debug |
|
2068 |
2981 d 14 h |
richard |
/repos/alcasar/trunk/scripts/ |
Kernel 4.4.30 - RPMs will follow soon |
|
2006 |
3094 d 13 h |
raphael.pion |
/repos/alcasar/trunk/ |
Fonctionnalité filtrage de protocole par utilisateur :
Nouvel attribut qui définit le niveau de filtrage de protocole d'un usager :
- Aucun : aucun filtrage de protocole
- Navigation Web (profile1) : On autorise les protocoles HTTP et HTTPS.
- Navigation Web (profile2) : Messagerie et serveur distant : On autorise les protocoles : HTTP/S, POP3/S, IMAP/S, FTP, SFTP et SSH
- Personnalisable (profile3) : via l'ACC dans le menu 'FILTRAGE'.
Le filtrage se fait en stockant l'utilisateur dans un des ipset suivant (lors du lancement de alcasar-conup.sh) :
-proto_0
-proto_1
-proto_2
-proto_3
L'attribut Filter-Id se présente dorénavant sous cette forme :
bit n°1-> profile1
bit n°2-> profile2
bit n°3-> profile3
bit n°6-> WL
bit n°7-> BL
bit n°8-> HAVP |
|