Comments (6)
No issue when using the command line:
xx@xx:/etc/systemd/system$ sudo /usr/bin/openvpn-auth-oauth2 --config /etc/openvpn-auth-oauth2/config.yaml
time=2024-02-14T11:41:33.689Z level=INFO msg="discover oidc auto configuration with provider generic for issuer https://accounts.google.com"
# This is wrong, see https://github.com/jkroepke/openvpn-auth-oauth2/issues/173
time=2024-02-14T11:41:33.721Z level=INFO msg="start HTTPS server listener on :9000 with base url https://xx:9000"
time=2024-02-14T11:41:33.722Z level=INFO msg="connect to openvpn management interface unix:///run/openvpn/server.sock"
time=2024-02-14T11:41:33.729Z level=INFO msg="connection to OpenVPN management interface established."
time=2024-02-14T11:41:33.762Z level=INFO msg="OpenVPN Version: OpenVPN 2.6.9 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO] - Management Version: 5"
time=2024-02-14T11:42:08.201Z level=INFO msg="new client connection" cid=0 kid=1 common_name=default reason=CONNECT username=""
time=2024-02-14T11:42:08.201Z level=INFO msg="start pending auth" cid=0 kid=1 common_name=default reason=CONNECT username=""
from openvpn-auth-oauth2.
And journalctl -flu openvpn-auth-oauth2
and systemctl status openvpn-auth-oauth2
reports nothing?
Are files in ls -lah /var/crash/
, and if not, please post the output to gain the path cat /proc/sys/kernel/core_pattern
from openvpn-auth-oauth2.
root@xx:/etc/openvpn-auth-oauth2# journalctl -flu openvpn-auth-oauth2
Feb 14 13:54:16 shared-hub-vpn-gateway systemd[1]: openvpn-auth-oauth2.service: Scheduled restart job, restart counter is at 11670.
Feb 14 13:54:16 shared-hub-vpn-gateway systemd[1]: Stopped OpenVPN authenticator.
Feb 14 13:54:16 shared-hub-vpn-gateway systemd[1]: Started OpenVPN authenticator.
Feb 14 13:54:16 shared-hub-vpn-gateway systemd[1]: openvpn-auth-oauth2.service: Main process exited, code=dumped, status=31/SYS
Feb 14 13:54:16 shared-hub-vpn-gateway systemd[1]: openvpn-auth-oauth2.service: Failed with result 'core-dump'.
Feb 14 13:54:21 shared-hub-vpn-gateway systemd[1]: openvpn-auth-oauth2.service: Scheduled restart job, restart counter is at 11671.
Feb 14 13:54:21 shared-hub-vpn-gateway systemd[1]: Stopped OpenVPN authenticator.
Feb 14 13:54:21 shared-hub-vpn-gateway systemd[1]: Started OpenVPN authenticator.
Feb 14 13:54:21 shared-hub-vpn-gateway systemd[1]: openvpn-auth-oauth2.service: Main process exited, code=dumped, status=31/SYS
Feb 14 13:54:21 shared-hub-vpn-gateway systemd[1]: openvpn-auth-oauth2.service: Failed with result 'core-dump'.
root@xx:/etc/openvpn-auth-oauth2# systemctl status openvpn-auth-oauth2
● openvpn-auth-oauth2.service - OpenVPN authenticator
Loaded: loaded (/lib/systemd/system/openvpn-auth-oauth2.service; enabled; vendor preset: enabled)
Active: activating (auto-restart) (Result: core-dump) since Wed 2024-02-14 13:55:00 UTC; 1s ago
Docs: https://github.com/jkroepke/openvpn-auth-oauth2
Process: 252226 ExecStart=/usr/bin/openvpn-auth-oauth2 --config ${CONFIG_FILE} (code=dumped, signal=SYS)
Main PID: 252226 (code=dumped, signal=SYS)
CPU: 107ms
Feb 14 13:55:00 shared-hub-vpn-gateway systemd[1]: openvpn-auth-oauth2.service: Main process exited, code=dumped, status=31/SYS
Feb 14 13:55:00 shared-hub-vpn-gateway systemd[1]: openvpn-auth-oauth2.service: Failed with result 'core-dump'
Yes, there is an unreadable file in ls -lah /var/crash/
, do you want it? And if yes, where can I send it? I don't know if it contains information regarding my environment.
from openvpn-auth-oauth2.
I don't know if it contains information regarding my environment.
You may want to remove credentials from config.yml and sysconfig first, then you can sent it to my mail address . You can find it on my GitHub profile @jkroepke
from openvpn-auth-oauth2.
Also I expect, if you remove the lines
from your systemd file, the service will start?
from openvpn-auth-oauth2.
Correct, then it works. Including all locked down permissions, so overall I'm pretty happy with where we are going.
I sent the crash file to you by mail.
from openvpn-auth-oauth2.
Related Issues (20)
- oauth2.validate.common-name not working HOT 4
- 20s delay for autorization after process restart HOT 18
- openvpn.passwordfile HOT 3
- Openvpn management interface passthrough (OpnSense compatibility) HOT 15
- What is openvpn-auth-oauth2.so used for? HOT 1
- Documentation unclear/incomplete HOT 1
- Google OIDC Groups claim HOT 15
- Implement OR-Based Group Validation HOT 2
- No auth after openvpn SIGHUP HOT 8
- Layout changed HOT 1
- validate.common-name fails with "openvpn client is empty" HOT 2
- Please support/move to plugin HOT 1
- [Google] Refresh token HOT 4
- Status of Keycloak Support? HOT 1
- v1.16.0-rc.2: provider `google` not recognised in client.yaml HOT 3
- Google oAuth not working HOT 1
- IOS OpenVPN Connect will disconnect after lock screen for about 20 seconds and can not auto re-connect after unlock HOT 38
- validate.common-name is is case-sensitive
- A possible chan deadlock with `commandResponseCh` HOT 9
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from openvpn-auth-oauth2.