CoovaChilli & FreeRadius: Apache server Authentication - apache

What I'm using:
Ubiquiti AirRouter
CoovaChilli
AWS server with FreeRadius & Apache2
What I'm trying:
Set up a captive portal using the Ubiquiti AirRouter
Use CoovaChilli firmware to set up captive portal on Ubiquiti
Make the radius authentification with the FreeRadiusServer on AWS
Use apache2 server on AWS to create the web captive portal for the user to log in
I have the Ubiquiti AirRouter configured with the CoovaChilli firmware (no issues here). The AP generated by the router works as expected and when you try to see any page, you get redirected to the apache web server.
Where I'm stuck:
The communication between the captive portal and the router is my issue. I'm trying to use ChilliLibrary.js functions (ChilliJSON) to make the radius login but it seems I'm missing some configuration, the response I get when I'm trying to authenticate in the captive portal is:
GET http://127.0.0.1:1812/json/status?callback=chilliJSON.reply&0.2522223754785955net::ERR_CONNECTION_REFUSED
ChilliLibrary.js:531
I'm looking for information in CoovaChilli and Chilli documentation but cannot find anything helpfull here.
Anybody knows any good tutorial about this part of a captive portal ? The connection between the webserver and the router ?
Thanks in advance

GET http://127.0.0.1:1812/ and net::ERR_CONNECTION_REFUSED says it all.
Check that you have a service running on port 1812 of localhost with netstat -ntl | grep 1812 then double check your firewall is allowing traffic through port 1812.

This may be of some use if you have not come across it before.
https://help.ubuntu.com/community/WifiDocs/CoovaChilli

Related

how to enable https for my aweb application hosted on google cloud

I acquired SSL certificate through some certificate authority and later installed on google cloud.
Still, my application is not accessible through https
www.eventic.in works but https://www.eventic.in don't work.
Can you please assist me in enabling https?
I want this site to be available only through https. Even if someone access without https, it should be redirected to https.
From the image I see you're configuring your certificates in Google App Engine Custom domains. Please note that Compute Engine (where is your VM) and App Engine are different products. Also it is possible that you're following this doc which is intended for App Engine and not for a VM.
Since you may want to set your certificates in a VM, those configuration remains on the Web server you're using (NGINX, Apache, etc). Also, checking your url https://www.eventic.in I'm sure the port 443 is not configured since this port is in general used for HTTPS.
You may want to look how to configure an SSL for the solution you have running in your VM

Configuring LDAP Authentication in Odoo

I have two servers:
1st server: Odoo 9 application hosted in Amazon EC2
2nd server: LDAP server hosted in my Synology NAS which is in a local area network
Right now, I would like to authenticate all the Odoo users by the LDAP server.
Things that I have done
I have installed the Authentication via LDAP (auth_ldap) module in Odoo
Configured LDAP Parameters in Odoo. Note: Actual IP address and domain were altered due to security issue. Need someone to check if the configuration values are entered correctly.
Open the port 389 in my office network to public and forwarded it to the LDAP server.
Tested using ldapsearch command line in Amazon EC2 to ensure that both servers can communicate.
Somehow I am still not able to login using the LDAP user login in Odoo. What did I do wrong? Is there any other way to find out if Odoo is communicating with the LDAP server?

Can't connect apache running on Amazon EC2

Today I got one instance in Amazon EC2 with Ubuntu 14. Through SSH( A Java SSH Client directly from my browser (Java required) ) I am able to login and able to install LAMP server.
I also include Inbound rules in Security group.
But when I am trying to load apache from browser I got "This site is configured to require an SSL (https) connection." this error.
While trying with https then got unable to connect.
I didn't under the issue.
I have added ICMP in the security group and ping is working from my local.
Could you please help me to resolve this.
Thanks in advance.
I selected Ubuntu as operating system but I took another instance with Amazon Linux and it is working now.

IBM Worklight - Application Center Console - Redirection to port 9080

We are trying to setup the Worklight Server for production, which is behind a reverse proxy that will help manage the SSL certificate.
What this means is that, when the user hit the domain, say https://mydomain.com:443, the proxy will automatically forward the request to the Worklight Server on port 9080.
After the setup is done for the reverse proxy following this guide, the installers.html page is working well. However we notice that when we try to access the console using https://mydomain.com:443/appcenterconsole, the user gets redirect to http://mydomain.com:9080/appcenterconsole/console.html instead and this is causing problem.
I searched around and found this link Worklight Console redirects to port 9080, which is similar to the problem i'm having. Is there a way for me to configure the Websphere Liberty Profile so that it will use the reverse proxy URL as the redirection URL?
I notice also that the index.html file in the appcenterconsole.war is using the meta refresh method to do the redirection. I'm tempted to change it to use a full URL, but then i also notice that the same issue happens when we go to the login.html and perform login. (Whereby after login, the page redirects the user with the 9080 port as well).
Any pointers or idea are welcomes. The Worklight version used is 6.1.
Thank you.
EDIT
The network setup in my environment:
Proxy Gateway (with SSL cert) configured to connect to Worklight Server for port 9080 whenever a connection with port 80 or 443 is received. Therefore:
https://mydomain.com:443/appcenterconsole -> will be mapped to http://worklightserver:9080/appcenterconsole
The mapping is done internally between the proxy and the worklight server.
When we type the full URL on the browser, ie. https://mydomain.com:443/appcenterconsole/console.html after i login, the console works fine.
Have you set up the JNDI entries detailed here?
http://pic.dhe.ibm.com/infocenter/wrklight/v6r1m0/index.jsp?topic=%2Fcom.ibm.worklight.installconfig.doc%2Fappcenter%2Fr_ac_appres_endpoint.html

How to properly authenticate access to localhost in the same network?

I have an apache server running on my local machine. I can connect to http://localhost from a different device in the same network, but I want to add a layer of authentication. So that when the user tries to access the localhost, it has to enter the correct username/pwd to proceed. Is there anyway to do this without having it the authentication code in the javascript or html file returned by the apache server? I'm new to this so I'm a little confused.
You can configure apache to require authentication. Have a look at http://httpd.apache.org/docs/2.4/howto/auth.html