Home
Help
Search
Login
Register
OPNsense Forum
»
Archive
»
16.7 Legacy Series
»
Captive Portal: Dropped vouchers still valid?
« previous
next »
Print
Pages: [
1
]
Author
Topic: Captive Portal: Dropped vouchers still valid? (Read 7851 times)
StP
Jr. Member
Posts: 62
Karma: 2
Captive Portal: Dropped vouchers still valid?
«
on:
September 28, 2016, 05:00:01 pm »
- Create voucher
- Use voucher to connect a device over WIFI -> works
- Disconnect device
- Drop voucher
- Reconnect device over WIFI -> still works
Is this WAD?
I'd expect a dropped voucher to be invalid even if its validity period is not yet expired.
Best regards
StP
Logged
wifimasters
Newbie
Posts: 19
Karma: 1
Re: Captive Portal: Dropped vouchers still valid?
«
Reply #1 on:
September 28, 2016, 06:55:07 pm »
interesting! i'll try this later on my CP setup.
Cheers!
Logged
DokuKäfer
Jr. Member
Posts: 83
Karma: 15
Re: Captive Portal: Dropped vouchers still valid?
«
Reply #2 on:
September 28, 2016, 08:36:55 pm »
The Drop Voucher function drops only invalid/expired vouchers!
I have added already a github ticket for an option to set voucher manually invalid.
https://github.com/opnsense/core/issues/899
«
Last Edit: September 28, 2016, 09:57:40 pm by DokuKäfer
»
Logged
StP
Jr. Member
Posts: 62
Karma: 2
Re: Captive Portal: Dropped vouchers still valid?
«
Reply #3 on:
September 29, 2016, 09:20:44 am »
> The Drop Voucher function drops only invalid/expired vouchers!
Arrgh!!!
My description is wrong.
I did
NOT
drop vouchers.
I deleted a voucher group using the "trashcan" button on the upper right.
After deleting all vouchers they are still usable by clients.
And on OPNsense's voucher administration page they are invisible/gone.
Sorry for this confusion.
StP
Logged
AdSchellevis
Administrator
Hero Member
Posts: 907
Karma: 184
Re: Captive Portal: Dropped vouchers still valid?
«
Reply #4 on:
September 29, 2016, 09:13:43 pm »
@Stp
Are you sure the client wasn't already logged-in? dropping vouchers won't drop sessions.
Logged
StP
Jr. Member
Posts: 62
Karma: 2
Re: Captive Portal: Dropped vouchers still valid?
«
Reply #5 on:
September 30, 2016, 08:40:49 am »
Yes, in our tests we did cut the connection by disabling the WIFI of the phone. A minute later we tried to reconnect and it worked.
Are session timeouts that long?
Regards
StP
Logged
StP
Jr. Member
Posts: 62
Karma: 2
Re: Captive Portal: Dropped vouchers still valid?
«
Reply #6 on:
September 30, 2016, 09:02:22 am »
OK, I just asked two of my colleagues to log into the wireless LAN again.
With the same devices they used before when vouchers were existing.
Both could log in and connect to sites on the internet.
In OPNsense there are no vouchers visible. All deleted.
But: The vouchers my colleagues initially used to log in had a lifetime of two weeks. So these vouchers would still be valid if I had not "trashed" them.
Regards
StP
Logged
AdSchellevis
Administrator
Hero Member
Posts: 907
Karma: 184
Re: Captive Portal: Dropped vouchers still valid?
«
Reply #7 on:
September 30, 2016, 09:05:17 am »
you should be able to set an idle timeout here (the default is limitless), then the sessions should be dropped after that many minutes.
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
Archive
»
16.7 Legacy Series
»
Captive Portal: Dropped vouchers still valid?