HomeForumsOpen-Source SoftwareCoovaChilli Development

Chillispot webif Authentication Bypass

Fri, 02/23/2007 - 22:52 — jschnip

Great job on Coova Chilli and on the coova ap as a whole.

One thing we've noticed missing in chillispot, is a way to authenticate a user from the webif. This would be really helpful because in certain situations, the client either doesn't have a browser or their browser isn't working correctly, and we have to bypass chillispot authentication by giving them a static ip address. However, when you enable Anyip - even giving them a static ip address doesn't bypass the chillispot authentication.

‹ Session Timeout on Local Users? Building IPKG of Coova Chilli from SVN ›
Wed, 02/28/2007 - 15:01 — david

Re: Chillispot webif Authentication Bypass

This ability is now in the coova-chilli svn.

<br />
# chilli_query /var/run/chilli.sock authorize help<br />
Unknown argument: help<br />
Use:<br />
  ip               - type: ip     - IP of client to authorize<br />
  sessionid        - type: string - Session-id to authorize<br />
  username         - type: string - Username to use in RADIUS Accounting<br />
  sessiontimeout   - type: long   - Max session time (in seconds)<br />
  maxoctets        - type: long   - Max up/down octets (bytes)<br />
  maxbwup          - type: long   - Max bandwidth up<br />
  maxbwdown        - type: long   - Max bandwidth down<br />
The ip and/or sessionid is required.<br />
Usage: chilli_query   []<br />

so... you can authorize sessions based on ip or session-id and set a couple parameters.

To install on CoovaAP-beta.4 from root shell:

<br />
# ipkg install --force-overwrite <a href="http://ap.coova.org/tmp/coova-chilli-r56.ipk" title="http://ap.coova.org/tmp/coova-chilli-r56.ipk">http://ap.coova.org/tmp/coova-chilli-r56.ipk</a><br />

cheers!

Sun, 02/25/2007 - 10:08 — david

Re: Chillispot webif Authentication Bypass

Thanks for the suggestion! Will see what can be done for the next release.