diff options
author | jim-p <jimp@pfsense.org> | 2013-01-17 16:30:00 -0500 |
---|---|---|
committer | jim-p <jimp@pfsense.org> | 2013-01-17 16:30:51 -0500 |
commit | 31c3b9fdebbb3c4255c62c411621014f68c144a2 (patch) | |
tree | a3383d7baf3cd4e3eb5c0a7dfca6dca81caebb5b /config/openvpn-client-export/openvpn-client-export.inc | |
parent | d367666c49ee11d3c38ed51031bcb437db961ebe (diff) | |
download | pfsense-packages-31c3b9fdebbb3c4255c62c411621014f68c144a2.tar.gz pfsense-packages-31c3b9fdebbb3c4255c62c411621014f68c144a2.tar.bz2 pfsense-packages-31c3b9fdebbb3c4255c62c411621014f68c144a2.zip |
Fix up the inline config format a little to make Android and iOS both happy.
Diffstat (limited to 'config/openvpn-client-export/openvpn-client-export.inc')
-rwxr-xr-x | config/openvpn-client-export/openvpn-client-export.inc | 26 |
1 files changed, 10 insertions, 16 deletions
diff --git a/config/openvpn-client-export/openvpn-client-export.inc b/config/openvpn-client-export/openvpn-client-export.inc index 710c5539..c2d3dd40 100755 --- a/config/openvpn-client-export/openvpn-client-export.inc +++ b/config/openvpn-client-export/openvpn-client-export.inc @@ -213,7 +213,7 @@ function openvpn_client_export_config($srvid, $usrid, $crtid, $useaddr, $quotese $conf .= "client{$nl}"; $conf .= "resolv-retry infinite{$nl}"; $conf .= "remote {$server_host} {$server_port}{$nl}"; - if (!empty($servercn)) { + if (!empty($servercn) && ($expformat != "inline")) { $qw = ($quoteservercn) ? "\"" : ""; $conf .= "tls-remote {$qw}{$servercn}{$qw}{$nl}"; } @@ -244,11 +244,7 @@ function openvpn_client_export_config($srvid, $usrid, $crtid, $useaddr, $quotese $prefix = openvpn_client_export_prefix($srvid, $usrid, $crtid); $cafile = "{$prefix}-ca.crt"; if($nokeys == false) { - if ($expformat == "inline") { - $conf .= "ca [inline]{$nl}"; - $conf .= "cert [inline]{$nl}"; - $conf .= "key [inline]{$nl}"; - } elseif ($expformat == "yealink_t28") { + if ($expformat == "yealink_t28") { $conf .= "ca /yealink/config/openvpn/keys/ca.crt{$nl}"; $conf .= "cert /yealink/config/openvpn/keys/client1.crt{$nl}"; $conf .= "key /yealink/config/openvpn/keys/client1.key{$nl}"; @@ -267,20 +263,16 @@ function openvpn_client_export_config($srvid, $usrid, $crtid, $useaddr, $quotese } elseif ($usetoken) { $conf .= "ca {$cafile}{$nl}"; $conf .= "cryptoapicert \"SUBJ:{$user['name']}\"{$nl}"; - } else { + } elseif ($expformat != "inline") { $conf .= "pkcs12 {$prefix}.p12{$nl}"; } } else if ($settings['mode'] == "server_user") { - if ($expformat == "inline") - $conf .= "ca [inline]{$nl}"; - else + if ($expformat != "inline") $conf .= "ca {$cafile}{$nl}"; } if ($settings['tls'] && !$skiptls) { - if ($expformat == "inline") - $conf .= "tls-auth [inline] 1{$nl}"; - elseif ($expformat == "yealink_t28") + if ($expformat == "yealink_t28") $conf .= "tls-auth /yealink/config/openvpn/keys/ta.key 1{$nl}"; elseif ($expformat == "yealink_t38g") $conf .= "tls-auth /phone/config/openvpn/keys/ta.key 1{$nl}"; @@ -288,7 +280,7 @@ function openvpn_client_export_config($srvid, $usrid, $crtid, $useaddr, $quotese $conf .= "tls-auth /config/openvpn/keys/ta.key 1{$nl}"; elseif ($expformat == "snom") $conf .= "tls-auth /openvpn/ta.key 1{$nl}"; - else + elseif ($expformat != "inline") $conf .= "tls-auth {$prefix}-tls.key 1{$nl}"; } @@ -716,7 +708,8 @@ function openvpn_client_export_sharedkey_config($srvid, $useaddr, $proxy, $zipco $cipher = $settings['crypto']; // add basic settings - $conf = "dev tun\n"; + if ($expformat != "inline") + $conf = "dev tun\n"; if(! empty($settings['tunnel_networkv6'])) { $conf .= "tun-ipv6\n"; } @@ -725,7 +718,8 @@ function openvpn_client_export_sharedkey_config($srvid, $useaddr, $proxy, $zipco $conf .= "proto {$proto}\n"; $conf .= "cipher {$cipher}\n"; $conf .= "client\n"; - $conf .= "resolv-retry infinite\n"; + if ($expformat != "inline") + $conf .= "resolv-retry infinite\n"; $conf .= "remote {$server_host} {$server_port}\n"; if ($settings['local_network']) { list($ip, $mask) = explode('/', $settings['local_network']); |