Captive Portal: Dropped vouchers still valid?

[StP]

- Create voucher
- Use voucher to connect a device over WIFI -> works
- Disconnect device
- Drop voucher
- Reconnect device over WIFI -> still works

Is this WAD?
I'd expect a dropped voucher to be invalid even if its validity period is not yet expired.

Best regards
  StP

[wifimasters]

interesting! i'll try this later on my CP setup.

Cheers!

[DokuKäfer]

The Drop Voucher function drops only invalid/expired vouchers!

I have added already a github ticket for an option to set voucher manually invalid.
https://github.com/opnsense/core/issues/899

[StP]

> The Drop Voucher function drops only invalid/expired vouchers!

Arrgh!!!
My description is wrong.
I did NOT drop vouchers.
I deleted a voucher group using the "trashcan" button on the upper right.

After deleting all vouchers they are still usable by clients.
And on OPNsense's voucher administration page they are invisible/gone.

Sorry for this confusion.

  StP

[AdSchellevis]

@Stp
Are you sure the client wasn't already logged-in? dropping vouchers won't drop sessions.

[StP]

Yes, in our tests we did cut the connection by disabling the WIFI of the phone. A minute later we tried to reconnect and it worked.
Are session timeouts that long?

Regards
  StP

[StP]

OK, I just asked two of my colleagues to log into the wireless LAN again.
With the same devices they used before when vouchers were existing.
Both could log in and connect to sites on the internet.
In OPNsense there are no vouchers visible. All deleted.
But: The vouchers my colleagues initially used to log in had a lifetime of two weeks. So these vouchers would still be valid if I had not "trashed" them.

Regards
  StP

[AdSchellevis]

you should be able to set an idle timeout here (the default is limitless), then the sessions should be dropped after that many minutes.