security/openconnect: support different protocols (#2512)

2026-04-25 23:06:17 -05:00 · 2021-10-22 18:49:16 +11:00
parent 220fb4c8ea
commit 4df8b686f5
5 changed files with 29 additions and 3 deletions
--- a/security/openconnect/Makefile
+++ b/security/openconnect/Makefile
@@ -1,6 +1,5 @@
 PLUGIN_NAME=		openconnect
-PLUGIN_VERSION=		1.4.0
-PLUGIN_REVISION=	2
+PLUGIN_VERSION=		1.4.1
 PLUGIN_COMMENT=		OpenConnect Client
 PLUGIN_DEPENDS=		openconnect
 PLUGIN_MAINTAINER=	m.muenz@gmail.com
--- a/security/openconnect/pkg-descr
+++ b/security/openconnect/pkg-descr
@@ -6,6 +6,10 @@ the Juniper SSL VPN which is now known as Pulse Connect Secure.
 Plugin Changelog
 ================

+1.4.1
+
+* Allow selection of different protocols
+
 1.4.0

 * Add "pin-sha256" certificate hash
--- a/security/openconnect/src/opnsense/mvc/app/controllers/OPNsense/Openconnect/forms/general.xml
+++ b/security/openconnect/src/opnsense/mvc/app/controllers/OPNsense/Openconnect/forms/general.xml
@@ -47,4 +47,10 @@
        <type>dropdown</type>
        <help>Select the client certificate to use.</help>
    </field>
+    <field>
+        <id>general.protocol</id>
+        <label>Protocl</label>
+        <type>dropdown</type>
+        <help>Select the protocol to use.</help>
+    </field>
 </form>
--- a/security/openconnect/src/opnsense/mvc/app/models/OPNsense/Openconnect/General.xml
+++ b/security/openconnect/src/opnsense/mvc/app/models/OPNsense/Openconnect/General.xml
@@ -1,7 +1,7 @@
 <model>
    <mount>//OPNsense/openconnect/general</mount>
    <description>Openconnect configuration</description>
-    <version>1.0.1</version>
+    <version>1.0.2</version>
    <items>
        <enabled type="BooleanField">
            <default>0</default>
@@ -47,5 +47,19 @@
            <Type>cert</Type>
            <Required>N</Required>
        </clientcertificate>
+        <protocol type="OptionField">
+            <default>anyconnect</default>
+            <multiple>N</multiple>
+            <Required>Y</Required>
+                <OptionValues>
+                    <anyconnect>Cisco AnyConnect</anyconnect>
+                    <nc>Juniper</nc>
+                    <pulse>Pulse Connect Secure</pulse>
+                    <gp>Palo Alto Networks GlobalProtect</gp>
+                    <f5>F5 Big-IP</f5>
+                    <fortinet>Fortinet Fortigate</fortinet>
+                    <array>Array Networks AG</array>
+                </OptionValues>
+        </protocol>
    </items>
 </model>
--- a/security/openconnect/src/opnsense/service/templates/OPNsense/Openconnect/openconnect.conf
+++ b/security/openconnect/src/opnsense/service/templates/OPNsense/Openconnect/openconnect.conf
@@ -19,4 +19,7 @@ authgroup={{ OPNsense.openconnect.general.group }}
 certificate=/usr/local/etc/openconnect_cert.pem
 sslkey=/usr/local/etc/openconnect_key.pem
 {%   endif %}
+{%   if helpers.exists('OPNsense.openconnect.general.protocol') and OPNsense.openconnect.general.protocol != '' %}
+protocol={{ OPNsense.openconnect.general.protocol }}
+{%   endif %}
 {% endif %}