Commits on Jan 31, 2024

1. Windows: Introduce 'Non-Admin' mode …

   This allows Easy-RSA to be run in a User's Home directory.
   
   The problem is ONLY caused by 'Windows User Access Control' feedback:
   
   Easy-RSA executable 'mkdir.exe' does not receive an error-on-failure
   when Windows UAC has not granted write access to the OpenVPN system
   directory: '\Program Files\Openvpn\easy-rsa'
   
   This means that easyrsa cannot successful verify directory creation
   by using only the exit status of command 'mkdir.exe'. Instead, easyrsa
   must also check that the directory was created via '[ -d pki ] || foo'.
   
   The following changes are required:
   
   * Changes to 'easyrsa-shell-init.sh':
   
   Allow options to be passed from the command line.
   The only supported options are: /na or --no-admin
   
   This non_admin mode will change directory to the User's Home directory
   and then make full write-access checks on the Home directory.
   
   In standard mode, the full write-access checks will be run in the default
   system folder. And, unless the Windows UAC has granted write access, these
   checks will fail as intended. A helpful error message is then printed.
   
   * Changes to 'EasyRSA-Start.bat':
   
   Allow command line options to be passed onto 'easyrsa-shell-init.sh'
   
   For Openvpn-build:
   This also allows the creation of a new Windows-Start Menu item:
   * 'Start EasyRSA Shell (Non-Admin)'
     Which can pass the '/na' or '--no-admin' flag to 'EasyRSA-Start.bat'
   
   Signed-off-by: Richard T Bonhomme <[email protected]>

   

   TinCanTech committed Jan 31, 2024
   Configuration menu

   • View commit details
   • Copy full SHA for c2823c4
   • Browse repository at this point

   Copy the full SHA

   c2823c4 View commit details

   Browse the repository at this point in the history