From f381399b8ff8a1a21814b4259db2c06abaec9c3f Mon Sep 17 00:00:00 2001 From: Daniel Lenski Date: Sun, 22 Mar 2020 23:31:37 -0700 Subject: [PATCH 1/1] we have reports of prelogin-cookie used for portal login; don't do interface switcheroo by default, just mention it --- gp-saml-gui.py | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/gp-saml-gui.py b/gp-saml-gui.py index 23e910c..2860812 100755 --- a/gp-saml-gui.py +++ b/gp-saml-gui.py @@ -262,15 +262,15 @@ if __name__ == "__main__": '''sure about this. You should probably try both.\n'''.format(args.server, server), file=stderr) if ifh != args.interface and not args.uri: print('''IMPORTANT: We started with SAML auth to the {} interface, but received a cookie ''' - '''that's associated with the {} interface. You should probably try both.\n'''.format(args.interface, ifh), + '''that's often associated with the {} interface. You should probably try both.\n'''.format(args.interface, ifh), file=stderr) print('''\nSAML response converted to OpenConnect command line invocation:\n''', file=stderr) print(''' echo {} |\n openconnect --protocol=gp --user={} --os={} --usergroup={}:{} --passwd-on-stdin {}'''.format( - quote(cv), quote(un), quote(args.ocos), quote(ifh), quote(cn), quote(server)), file=stderr) + quote(cv), quote(un), quote(args.ocos), quote(args.interface), quote(cn), quote(server)), file=stderr) print('''\nSAML response converted to test-globalprotect-login.py invocation:\n''', file=stderr) print(''' test-globalprotect-login.py --user={} --clientos={} -p '' \\\n https://{}/{} {}={}\n'''.format( - quote(un), quote(args.clientos), quote(server), quote(if2auth[ifh]), quote(cn), quote(cv)), file=stderr) + quote(un), quote(args.clientos), quote(server), quote(if2auth[args.interface]), quote(cn), quote(cv)), file=stderr) varvals = { 'HOST': quote('https://%s/%s:%s' % (server, if2auth[args.interface], cn)), 'USER': quote(un), 'COOKIE': quote(cv), 'OS': quote(args.ocos), -- 2.39.5