Support for openfortivpn's --cookie option

Question

Support for openfortivpn's --cookie option

Opened this issue 2 years ago · 2 comments

The openfortivpn repo has added the --cookie option to support SAML: adrienverge/openfortivpn#867

Does this gui tool support using that as the login option?

Answer 1 · 2022-12-19T09:54:10.000Z

@xulongwu4 What exactly is your use case? Would starting an integrated web browser window for SAML/SSO login to get the VPN session cookie answer you needs?

See #186.

Answer 2 · 2024-04-27T21:35:28.000Z

For external browser I implemented a script to retrieve token on repository https://github.com/filippor/XdgOpenSaml
the process is
1 start a server to listen on localhost:8020/?id=
2 open in external browser url + "/remote/saml/start?redirect=1"
3 server receive a call and with retieved id call url + "/remote/saml/auth_id?id=" + id to retrieve cookie

you can see a sample implementation in this repo https://github.com/filippor/XdgOpenSaml/blob/main/XdgOpenSaml.java that write the cookie to standard out like openfortivpn-webview

XdgOpenSaml url:port | sudo openfortivpn url:port --cookie-on-stdin --pppd-use-peerdns=