lucaspalomodevelop/opnsense-core
1
0
Fork 0
mirror of https://github.com/lucaspalomodevelop/opnsense-core.git synced 2026-03-13 08:09:42 +00:00
Code Issues Packages Projects Releases Wiki Activity

VPN: IPsec: Connections - omit conditional authentication properties when not applicable. closes https://github.com/opnsense/core/issues/6807

Browse Source
This commit is contained in:
Ad Schellevis 2023-08-31 15:10:59 +02:00
parent fc0f2c746d
commit a702cf9fb3
1 changed files with 7 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
src/opnsense/mvc/app/models/OPNsense/IPsec/Swanctl.php
View File

@ -172,11 +172,18 @@ class Swanctl extends BaseModel
}
$thisnode[$attr_name] = implode(',', $tmp);
} elseif ($attr_name == 'pubkeys') {
if ((string)$node->auth != 'pubkey') {
// explicit skip, pubkeys bound to auth type selection
continue;
}
$tmp = [];
foreach (explode(',', (string)$attr) as $item) {
$tmp[] = $item . '.pem';
}
$thisnode[$attr_name] = implode(',', $tmp);
} elseif ($attr_name == 'eap_id' && strpos((string)$node->auth, 'eap') === false) {
// explicit skip, eap_id is only valid for eap auth types.
continue;
} else {
$thisnode[$attr_name] = (string)$attr;
}