[Openvpn-devel] Document that auth-user-pass may be inlined

Message ID	20240219192822.2477258-1-selva.nair@gmail.com
State	Superseded
Headers	show Return-Path: <openvpn-devel-bounces@lists.sourceforge.net> Received-SPF: pass (google.com: domain of openvpn-devel-bounces@lists.sourceforge.net designates 216.105.38.7 as permitted sender) client-ip=216.105.38.7; From: selva.nair@gmail.com To: openvpn-devel@lists.sourceforge.net Date: Mon, 19 Feb 2024 14:28:22 -0500 Message-Id: <20240219192822.2477258-1-selva.nair@gmail.com> MIME-Version: 1.0 preview: From: Selva Nair Commits 7d48d31b, 39619b7f added support for inlining username and, optionally, password. Add a description of its usage in the man page. Change-Id: I7a1765661f7676eeba8016024080fd1026220ced Signed-off-by: Selva Nair --- Does this have to go through gerrit? Content analysis details: (-0.2 points, 6.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- 0.0 SPF_HELO_NONE SPF: HELO does not publish an SPF Record 0.0 FREEMAIL_FROM Sender email is commonly abused enduser mail provider [selva.nair[at]gmail.com] -0.0 SPF_PASS SPF: sender matches SPF record -0.0 RCVD_IN_MSPIKE_H2 RBL: Average reputation (+2) [209.85.167.176 listed in wl.mailspike.net] -0.0 RCVD_IN_DNSWL_NONE RBL: Sender listed at https://www.dnswl.org/, no trust [209.85.167.176 listed in list.dnswl.org] -0.1 DKIM_VALID_EF Message has a valid DKIM or DK signature from envelope-from domain -0.1 DKIM_VALID_AU Message has a valid DKIM or DK signature from author's domain -0.1 DKIM_VALID Message has at least one valid DKIM or DK signature 0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily valid -0.0 T_SCC_BODY_TEXT_LINE No description available. Subject: [Openvpn-devel] [PATCH] Document that auth-user-pass may be inlined Precedence: list Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Errors-To: openvpn-devel-bounces@lists.sourceforge.net X-getmail-retrieved-from-mailbox: Inbox
Series	[Openvpn-devel] Document that auth-user-pass may be inlined \| expand [Openvpn-devel] Document that auth-user-pass may be inlined

Message ID

20240219192822.2477258-1-selva.nair@gmail.com

State

Superseded

Headers

Received-SPF: pass (google.com: domain of
 openvpn-devel-bounces@lists.sourceforge.net designates 216.105.38.7 as
 permitted sender) client-ip=216.105.38.7;
From: selva.nair@gmail.com
To: openvpn-devel@lists.sourceforge.net
Date: Mon, 19 Feb 2024 14:28:22 -0500
Message-Id: <20240219192822.2477258-1-selva.nair@gmail.com>
MIME-Version: 1.0
Subject: [Openvpn-devel] [PATCH] Document that auth-user-pass may be inlined
Precedence: list
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: openvpn-devel-bounces@lists.sourceforge.net

Series

[Openvpn-devel] Document that auth-user-pass may be inlined | expand

Commit Message

Selva Nair Feb. 19, 2024, 7:28 p.m. UTC

From: Selva Nair <selva.nair@gmail.com>

Commits 7d48d31b, 39619b7f added support for inlining username
and, optionally, password.
Add a description of its usage in the man page.

Change-Id: I7a1765661f7676eeba8016024080fd1026220ced
Signed-off-by: Selva Nair <selva.nair@gmail.com>
---
Does this have to go through gerrit?

 doc/man-sections/client-options.rst | 11 +++++++++++
 doc/man-sections/inline-files.rst   |  2 +-
 2 files changed, 12 insertions(+), 1 deletion(-)

Comments

Antonio Quartulli Feb. 19, 2024, 9:59 p.m. UTC | #1

Hi,

On 19/02/2024 20:28, selva.nair@gmail.com wrote:
> From: Selva Nair <selva.nair@gmail.com>
> 
> Commits 7d48d31b, 39619b7f added support for inlining username
> and, optionally, password.
> Add a description of its usage in the man page.
> 
> Change-Id: I7a1765661f7676eeba8016024080fd1026220ced
> Signed-off-by: Selva Nair <selva.nair@gmail.com>

Acked-by: Antonio Quartulli <a@unstable.cc>

> ---
> Does this have to go through gerrit?
> 
>   doc/man-sections/client-options.rst | 11 +++++++++++
>   doc/man-sections/inline-files.rst   |  2 +-
>   2 files changed, 12 insertions(+), 1 deletion(-)
> 
> diff --git a/doc/man-sections/client-options.rst b/doc/man-sections/client-options.rst
> index b92b1a46..b75fe5bd 100644
> --- a/doc/man-sections/client-options.rst
> +++ b/doc/man-sections/client-options.rst
> @@ -73,6 +73,17 @@ configuration.
>     If ``up`` is omitted, username/password will be prompted from the
>     console.
>   
> +  This option can also be inlined
> +  ::
> +
> +    <auth-user-pass>
> +    username
> +    [password]
> +    </auth-user-pass>
> +
> +  where password is optional, and will be prompted from the console if
> +  missing.
> +
>     The server configuration must specify an ``--auth-user-pass-verify``
>     script to verify the username/password provided by the client.
>   
> diff --git a/doc/man-sections/inline-files.rst b/doc/man-sections/inline-files.rst
> index f46301e8..ad02c855 100644
> --- a/doc/man-sections/inline-files.rst
> +++ b/doc/man-sections/inline-files.rst
> @@ -5,7 +5,7 @@ OpenVPN allows including files in the main configuration for the ``--ca``,
>   ``--cert``, ``--dh``, ``--extra-certs``, ``--key``, ``--pkcs12``,
>   ``--crl-verify``, ``--http-proxy-user-pass``, ``--tls-auth``,
>   ``--auth-gen-token-secret``, ``--peer-fingerprint``, ``--tls-crypt``,
> -``--tls-crypt-v2`` and ``--verify-hash`` options.
> +``--tls-crypt-v2``, ``--verify-hash`` and ``auth-user-pass`` options.
>   
>   Each inline file started by the line ``<option>`` and ended by the line
>   ``</option>``

Gert Doering Feb. 20, 2024, 4:22 p.m. UTC | #2

Hi,

On Mon, Feb 19, 2024 at 02:28:22PM -0500, selva.nair@gmail.com wrote:
> Does this have to go through gerrit?

As of today, there's two ways to inject patches / patch sets for
"openvpn main" - the openvpn-devel@ list, "as always", and gerrit.

Gerrit is nice for larger and more complex patchsets, because review
can happen in pieces (= you can review the first half today, comment
on the web, it will remember which parts you have seen already, and
do the rest tomorrow), and also gerrit can do stuff like "so what
changed from v4 to v5?" meta-diffs.

For smaller patches "single file, trivially correct", openvpn-devel@ is
less work for me :-)

So - what is "better" depends.

gert

Frank Lichtenheld Feb. 20, 2024, 5:04 p.m. UTC | #3

On Mon, Feb 19, 2024 at 02:28:22PM -0500, selva.nair@gmail.com wrote:
> From: Selva Nair <selva.nair@gmail.com>
> 
> Commits 7d48d31b, 39619b7f added support for inlining username
> and, optionally, password.
> Add a description of its usage in the man page.

Please reference Github #370 which is the same topic.

> Change-Id: I7a1765661f7676eeba8016024080fd1026220ced
> Signed-off-by: Selva Nair <selva.nair@gmail.com>
> ---
> Does this have to go through gerrit?
> 
>  doc/man-sections/client-options.rst | 11 +++++++++++
>  doc/man-sections/inline-files.rst   |  2 +-
>  2 files changed, 12 insertions(+), 1 deletion(-)
> 
> diff --git a/doc/man-sections/client-options.rst b/doc/man-sections/client-options.rst
> index b92b1a46..b75fe5bd 100644
> --- a/doc/man-sections/client-options.rst
> +++ b/doc/man-sections/client-options.rst
> @@ -73,6 +73,17 @@ configuration.
>    If ``up`` is omitted, username/password will be prompted from the
>    console.
>  
> +  This option can also be inlined
> +  ::
> +
> +    <auth-user-pass>
> +    username
> +    [password]
> +    </auth-user-pass>
> +
> +  where password is optional, and will be prompted from the console if
> +  missing.
> +
>    The server configuration must specify an ``--auth-user-pass-verify``
>    script to verify the username/password provided by the client.
>  
> diff --git a/doc/man-sections/inline-files.rst b/doc/man-sections/inline-files.rst
> index f46301e8..ad02c855 100644
> --- a/doc/man-sections/inline-files.rst
> +++ b/doc/man-sections/inline-files.rst
> @@ -5,7 +5,7 @@ OpenVPN allows including files in the main configuration for the ``--ca``,
>  ``--cert``, ``--dh``, ``--extra-certs``, ``--key``, ``--pkcs12``,
>  ``--crl-verify``, ``--http-proxy-user-pass``, ``--tls-auth``,
>  ``--auth-gen-token-secret``, ``--peer-fingerprint``, ``--tls-crypt``,
> -``--tls-crypt-v2`` and ``--verify-hash`` options.
> +``--tls-crypt-v2``, ``--verify-hash`` and ``auth-user-pass`` options.

--auth-user-pass for consistency.

Regards,

diff --git a/doc/man-sections/client-options.rst b/doc/man-sections/client-options.rst
index b92b1a46..b75fe5bd 100644
--- a/doc/man-sections/client-options.rst
+++ b/doc/man-sections/client-options.rst
@@ -73,6 +73,17 @@  configuration.
   If ``up`` is omitted, username/password will be prompted from the
   console.
 
+  This option can also be inlined
+  ::
+
+    <auth-user-pass>
+    username
+    [password]
+    </auth-user-pass>
+
+  where password is optional, and will be prompted from the console if
+  missing.
+
   The server configuration must specify an ``--auth-user-pass-verify``
   script to verify the username/password provided by the client.
 
diff --git a/doc/man-sections/inline-files.rst b/doc/man-sections/inline-files.rst
index f46301e8..ad02c855 100644
--- a/doc/man-sections/inline-files.rst
+++ b/doc/man-sections/inline-files.rst
@@ -5,7 +5,7 @@  OpenVPN allows including files in the main configuration for the ``--ca``,
 ``--cert``, ``--dh``, ``--extra-certs``, ``--key``, ``--pkcs12``,
 ``--crl-verify``, ``--http-proxy-user-pass``, ``--tls-auth``,
 ``--auth-gen-token-secret``, ``--peer-fingerprint``, ``--tls-crypt``,
-``--tls-crypt-v2`` and ``--verify-hash`` options.
+``--tls-crypt-v2``, ``--verify-hash`` and ``auth-user-pass`` options.
 
 Each inline file started by the line ``<option>`` and ended by the line
 ``</option>``

[Openvpn-devel] Document that auth-user-pass may be inlined

Commit Message

Comments

Patch