wallenstein/algo
1
0
Fork 0
mirror of https://github.com/trailofbits/algo.git synced 2025-07-21 21:13:00 +02:00
Code Issues Projects Releases Wiki Activity

User friendly provider UI #28

Browse source
This commit is contained in:
jack 2016-08-04 21:05:07 +03:00
parent a15939a7c6
commit a1a0d041b1
2 changed files with 13 additions and 18 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

22
README.md
View file

@ -30,23 +30,27 @@ Algo (short for "Al Gore", the **V**ice **P**resident of **N**etworks everywhere
* python >= 2.6
* libselinux-python (for RedHat based distros)
* [dopy=0.3.5](https://github.com/Wiredcraft/dopy)
* SHell or BASH
### Initial Deployment
Open the file `config.cfg` in your favorite text editor. Change `server_name` and specify users in the `users` list. Start the deploy and follow the instructions (available options for PROVIDER are `digitalocean` or `ec2`):
```
ansible-playbook deploy.yml -e "provider=PROVIDER"
```
When the process is done, you can find `.mobileconfig` files and certificates in the `configs` directory. Send the `.mobileconfig` profile to users with Apple devices. Note that profile installation is supported over AirDrop. Do not send the mobileconfig file over plaintext since it contains the keys to access the VPN. For those using other clients, like Windows or Android, send the X.509 certificates for the server and their user.
Note: For EC2 users, ensure that you setup the required environment variables prior to starting the deploy:
**Available cloud providers:**
* DigitalOcean
* Amazon EC2
Note: For EC2 users, ensure that you setup the required environment variables prior to starting the deploy:
```
declare -x AWS_ACCESS_KEY_ID="XXXXXXXXXXXXXXXXXXX"
declare -x AWS_SECRET_ACCESS_KEY="XXXXXXXXXXXXXXXxx"
```
Open the file `config.cfg` in your favorite text editor. Specify users in the `users` list. Start the deploy and follow the instructions:
```
./run
```
When the process is done, you can find `.mobileconfig` files and certificates in the `configs` directory. Send the `.mobileconfig` profile to users with Apple devices. Note that profile installation is supported over AirDrop. Do not send the mobileconfig file over plaintext since it contains the keys to access the VPN. For those using other clients, like Windows or Android, send the X.509 certificates for the server and their user.
### User Management

9
deploy.yml
View file

@ -1,15 +1,6 @@
---
- hosts: localhost
gather_facts: false
tasks:
- fail:
msg:
- 'You need to define `provider` variable. Read README.md for more details'
when: provider is not defined
- include: "{{ provider }}.yml"
when: provider is defined
- include: common.yml
- include: security.yml
- include: features.yml