fw-id-agent

module

v1.0.0 Latest Latest Go to latest Published: Apr 29, 2024 License: MIT

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/telekom-mms/fw-id-agent

Links

Open Source Insights

README ¶

Firewall Identity Agent

Firewall Identity Agent is a systemd user service that logs the current user in on a Firewall Identity Service. It uses Trusted Network Detection to detect if the host is currently connected to a trusted network and then logs the user in on the Firewall Identity Service. Desktop notifications inform the user about the trusted network and login state.

Installation

For installation you can chose between 2 options:

Using Debian/Ubuntu package

Download the package from releases page and use the following instructions to install and activate the agent:

$ sudo apt install ./fw-id-agent.deb
$ sudo cp /usr/share/doc/fw-id-agent/examples/config.json /etc/fw-id-agent.json # and adjust config parameters
$ sudo systemctl --user start fw-id-agent.service

Using tar.gz archive

Download the archive from releases page and use the following instructions to install and activate the agent:

$ tar -xf fw-id-agent.tar.gz && cd <extracted directory>
$ sudo cp example_config.json /etc/fw-id-agent.json # and adjust config parameters
$ sudo cp fw-id-agent /usr/bin/
$ sudo cp fw-id-cli /usr/bin/
$ sudo cp fw-id-agent.service /usr/lib/systemd/user/
$ sudo systemctl --user enable fw-id-agent.service
$ sudo systemctl --user start fw-id-agent.service

Usage

There are two executables: fw-id-agent is the Firewall Identity Agent and fw-id-cli is the command line interface for the Firewall Identity Agent.

fw-id-agent

If you want to run the Firewall Identity Agent manually, you can run the fw-id-agent executable with the following command line arguments:

Usage of fw-id-agent:
  -config file
        Set config file
  -keepalive minutes
        Set default client keep-alive in minutes (default 5)
  -logintimeout seconds
        Set client login request timeout in seconds (default 15)
  -logouttimeout seconds
        Set client logout request timeout in seconds (default 5)
  -notifications
        Set desktop notifications (default true)
  -realm string
        Set kerberos realm
  -retrytimer seconds
        Set client login retry timer in case of errors in seconds (default 15)
  -serviceurl string
        Set service URL
  -startdelay seconds
        Set agent start delay in seconds
  -tndservers list
        Set comma-separated list of TND server url:hash pairs
  -verbose
        Set verbose output
  -version
        print version

For example, you can run the Firewall Identity Agent with the following command line:

$ fw-id-agent -config /etc/fw-id-agent.json

fw-id-cli

You can show and monitor the current status of the Firewall Identity Agent or send re-login requests using the fw-id-cli executable:

Usage:
  fw-id-cli [options] [command]

Options:
  -version
        print version

Commands:
  status
        show agent status
  monitor
        monitor agent status updates
  relogin
        relogin agent

The status command of fw-id-cli supports printing verbose or JSON output with extra command line arguments:

Usage of status:
  -json
        set json output
  -verbose
        set verbose output

For example, you can show the verbose status with the following command line:

$ fw-id-cli status -verbose

Directories ¶

Path	Synopsis
cmd
fw-id-agent Fw-id-agent is the firewall identity agent.	Fw-id-agent is the firewall identity agent.
fw-id-cli Fw-id-cli is the command line interface for the firewall identity agent.	Fw-id-cli is the command line interface for the firewall identity agent.
internal
agent Package agent contains the firewall identity agent.	Package agent contains the firewall identity agent.
cli Package cli contains the agent command line interface.	Package cli contains the agent command line interface.
client Package client contains the identity agent client.	Package client contains the identity agent client.
dbusapi Package dbusapi contains the D-Bus API.	Package dbusapi contains the D-Bus API.
krbmon Package krbmon contains kerberos monitoring components.	Package krbmon contains kerberos monitoring components.
notify Package notify contains components for desktop notifications.	Package notify contains components for desktop notifications.
pkg
client Package client contains the FW-ID-Agent client.	Package client contains the FW-ID-Agent client.
config Package config contains the agent config.	Package config contains the agent config.
status Package status contains the agent status.	Package status contains the agent status.
tools
dbusclient Dbusclient is an example of a D-Bus client for the firewall identity agent.	Dbusclient is an example of a D-Bus client for the firewall identity agent.

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL