mirror of
https://github.com/openNDS/openNDS.git
synced 2026-04-12 03:00:08 -04:00
8fbeee7261
This enhancement allows custom variables generated by FAS to be sent to Binauth. FAS can embed custom variables into redir, allowing local post authentication processing to take place. Two example scripts are provided. The first provides sitewide username/password login for two user groups, Staff and Guest in the example. Staff has unlimited access, Guest is limited to 10 minutes per session. The second provides local logging of NDS logins, even with a remote FAS. The documentation is fully updated. Signed-off-by: Rob White <rob@blue-wave.net>
90 lines
2.6 KiB
HTML
90 lines
2.6 KiB
HTML
<!DOCTYPE html>
|
|
<html>
|
|
<head>
|
|
<meta http-equiv="Cache-Control" content="no-cache, no-store, must-revalidate">
|
|
<meta http-equiv="Pragma" content="no-cache">
|
|
<meta http-equiv="Expires" content="0">
|
|
<meta charset="utf-8">
|
|
<meta name="viewport" content="width=device-width, initial-scale=1.0">
|
|
|
|
<link rel="shortcut icon" href="/images/splash.jpg" type="image/x-icon">
|
|
<link rel="stylesheet" type="text/css" href="/splash.css">
|
|
|
|
<title>$gatewayname Captive Portal.</title>
|
|
|
|
<!--
|
|
Content:
|
|
Nodogsplash (NDS), by default, serves this splash page (splash.html)
|
|
when a client device Captive Portal Detection (CPD) process
|
|
attempts to send a port 80 request to the Internet.
|
|
|
|
You may either embed css in this file or use a separate .css file
|
|
in the same directory as this file, as demonstrated here.
|
|
|
|
It should be noted when designing a custom splash page
|
|
that for security reasons many CPD implementations:
|
|
Immediately close the browser when the client has authenticated.
|
|
Prohibit the use of href links.
|
|
Prohibit downloading of external files
|
|
(including .css and .js).
|
|
Prohibit the execution of javascript.
|
|
|
|
Authentication:
|
|
A client is authenticated on submitting an HTTP form, method=get,
|
|
passing $authaction, $tok and $redir.
|
|
|
|
It is also possible to authenticate using an href link to
|
|
$authtarget but be aware that many device Captive Portal Detection
|
|
processes prohibit href links, so this method may not work with
|
|
all client devices.
|
|
|
|
Available variables:
|
|
error_msg: $error_msg
|
|
gatewayname: $gatewayname
|
|
tok: $tok
|
|
redir: $redir
|
|
authaction: $authaction
|
|
denyaction: $denyaction
|
|
authtarget: $authtarget
|
|
clientip: $clientip
|
|
clientmac: $clientmac
|
|
clientupload: $clientupload
|
|
clientdownload: $clientdownload
|
|
gatewaymac: $gatewaymac
|
|
nclients: $nclients
|
|
maxclients: $maxclients
|
|
uptime: $uptime
|
|
|
|
Additional Variables that can be passed back via the HTTP get,
|
|
or appended to the query string of the authtarget link:
|
|
username
|
|
password
|
|
-->
|
|
|
|
</head>
|
|
|
|
<body>
|
|
<div class="offset">
|
|
<med-blue>$gatewayname Captive Portal.</med-blue>
|
|
<div class="insert">
|
|
<img style="height:60px; width:60px; float:left;" src="/images/splash.jpg" alt="Splash Page: For access to the Internet.">
|
|
<big-red>Welcome!</big-red>
|
|
<hr>
|
|
<br>
|
|
<italic-black>For access to the Internet, please tap or click Continue.</italic-black>
|
|
<br><br>
|
|
<hr>
|
|
|
|
<form method="get" action="$authaction">
|
|
<input type="hidden" name="tok" value="$tok">
|
|
<input type="hidden" name="redir" value="$redir">
|
|
<input type="submit" value="Continue">
|
|
</form>
|
|
|
|
<hr>
|
|
<copy-right>Copyright © The Nodogsplash Contributors 2004-2019.<br>This software is released under the GNU GPL license.</copy-right>
|
|
|
|
</div></div>
|
|
</body>
|
|
</html>
|