Captive-Portal
view release on metacpan or search on metacpan
lib/Captive/Portal.pm view on Meta::CPAN
Location: https://gateway.acme.org/capo/
=item 4. SESSION LOGIN
The I<capo.fcgi> script, fired due to this redirected request, offers a splash/login page. After successful login the firewall is dynamically changed to allow this clients IP/MAC tuple for internet access by ipset(8):
ipset add capo_sessions_ipset CLIENT_IP,CLIENT_MAC
=item 5. SESSION LOGOUT
The capo.fcgi script offers a status/logout page. After successful logout the firewall is dynamically changed to disallow this IP/MAC tuple for internet access.
ipset del capo_sessions_ipset CLIENT_IP
=item 6. SESSION IDLE
A cronjob fires periodically the capo-ctl.pl script checking for idle or malformed sessions. Idle means, the client didn't send any packet for a period of time (cfg param: IDLE_TIME = 10min). Clients sending packets are registered via iptables/ipset ...
=item 7. COMFORTABLE SESSION REACTIVATION
For a short period of time (cfg param: KEEP_OLD_STATE_PERIOD = 1h) the session is still on disc, but in IDLE state. If a client has cookies enabled and a HTTP request matches the stored IP/MAC/COOKIE data on disc, the session is reactivated without a...
=back
=head1 INSTALLATION
Please see the INSTALL file in this distribution.
=head1 CONFIGURATION
The configuration file is searched in the following default places:
$ENV{CAPTIVE_PORTAL_CONFIG} ||
$Bin/../etc/local/config.pl ||
$Bin/../etc/config.pl
=head1 LOGGING
Logging is handled by the Log::Log4perl module. The logging configuration is searched in the following default places:
$ENV{CAPTIVE_PORTAL_LOG4PERL} ||
$Bin/../etc/local/log4perl.conf ||
$Bin/../etc/log4perl.conf
=head1 LOCAL ADAPTATION
The HTML files are generated from templates (Template-Toolkit syntax). You should use the original template files as stanzas and put the locally changed versions into the local template tree. The template search order prefers the local templates.
The CSS is based on the wonderful blueprint css framework, see L<http://www.blueprintcss.org/>. Of course you may use your own styles if needed.
The firewall rules and commands are also generated from template files. Normally there is no need to change the firewall rules but it would be possible to add some local needed additional rules without changing the perl code. Be careful, you must und...
=head1 I18N
There exists a template tree for each supported language. Some system/error messages used by the program must also be translated for the message catalog in the config file.
=cut
use POSIX qw(strftime);
use Log::Log4perl qw(:easy);
use Try::Tiny;
use Template;
# consume CaPo roles
use Role::Basic qw(with);
with qw(
Captive::Portal::Role::Config
Captive::Portal::Role::Utils
Captive::Portal::Role::I18N
Captive::Portal::Role::AuthenSimple
Captive::Portal::Role::Session
Captive::Portal::Role::Firewall
);
#################################################
# create CaPo object once
#
# read the config
# drop privileges
# create Template object
# create authentication object
# open/create session dir
#
sub new {
my $class = shift or LOGDIE "missing param 'class'\n";
# create empty object
my $self = bless {}, $class;
my $opts = {};
if ( ref $_[0] && ref $_[0] eq 'HASH' ) {
$opts = shift;
}
else {
%$opts = @_;
}
# parse cfg file or use defaults
if ( $opts->{cfg_file} ) {
DEBUG('new(): parse cfg file');
$self->parse_cfg_file( $opts->{cfg_file} );
}
DEBUG 'new(): drop privileges';
$self->drop_privileges;
DEBUG 'new(): try to create Template object with INCLUDE_PATH: ',
join( ':', $self->cfg->{TEMPLATE_INCLUDE_PATH} );
$self->{template} = Template->new(
{ INCLUDE_PATH => $self->cfg->{TEMPLATE_INCLUDE_PATH}, } )
or LOGDIE "$Template::ERROR\n";
DEBUG 'new(): create Authen::Simple object';
$self->build_authenticator
or LOGDIE "Couldn't build Authen::Simple object\n";
# check/create sessions-dir
DEBUG 'new(): check or create sessions-dir';
$self->open_sessions_dir;
( run in 1.855 second using v1.01-cache-2.11-cpan-8f98c5d2c55 )