Cloudron makes it easy to run web apps like WordPress, Nextcloud, GitLab on your server. Find out more or install now.


    Cloudron Forum

    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular

    Domain auto-configuration - import profile using URL ?

    OpenVPN
    2
    3
    1506
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S
      sysadmin last edited by sysadmin

      OpenVPN client (on mobile at least) supports auto configuration with only using user:pass combo and entering server domain. This would make end user logins simple to manage with no needing to manually download and import profile files. The web ui is indeed nice, but this would be great. I had trouble with this on the demo cloudron. Any idea how to implement? I tried to find official documentation on this feature configuration but no luck..

      The client says "Please note that you can only import profile using URL if it is supported by your VPN provider"

      If this is difficult to do, maybe don't bother since we will hopefully get wireguard eventually on cloudron at some point.

      If it's easy to do would be great for users! Also most importantly thanks for the work thus far!

      EDIT: Okay I found this link discussion recently https://old.reddit.com/r/OpenVPN/comments/lb4ryq/profile_import_from_url/

      I did some reading on OpenVPN "Access Server" which makes me very much dispise OpenVPN's development choice for this usability feature. I think it is paid only for more than 2 users. Oh well not sure if anyone has a open version of this made. Hopefully we can get wireguard since it is better for many reasons any way.

      Perhaps someone has some insight into this or wants to discuss

      1 Reply Last reply Reply Quote 0
      • girish
        girish Staff last edited by

        Nice, I wasn't aware of this feature! From the reddit link, https://github.com/OpenVPN/openvpn3-linux/blob/master/src/python/openvpn3-as#L125 is the protocol which seems very easy to implement. Let me quickly check if it's actually that trivial.

        1 Reply Last reply Reply Quote 2
        • girish
          girish Staff last edited by

          This is more involved. First, there is HEAD request with /?embedded=true. Then, there is a POST request to /RPC2. We have to reverse engineer a bit to implement this.

          There's more info in parts at

          • https://forums.openvpn.net/viewtopic.php?f=36&t=29767
          • https://github.com/ryanharrison554/pyovpn-as/blob/a5d4ad36a952b982cc74c4573595b9031369239a/pyovpn_as/api/cli.py * https://forums.openvpn.net/viewtopic.php?t=28491
          • http://blog.manton.im/2016/02/reverse-engineering-openvpn-as-login.html
          1 Reply Last reply Reply Quote 1
          • First post
            Last post
          Powered by NodeBB