gandalf/secubox-openwrt
1
1
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
00f2f20c2f
secubox-openwrt/luci-app-auth-guardian
History
CyberMind-FR a53e5f7068 feat: Add comprehensive permission management system (v0.3.1) 
Implement three-tier permission management across all SecuBox modules:

**1. Package-Level Permissions (PKG_FILE_MODES)**
- Add PKG_FILE_MODES to all 15 module Makefiles
- RPCD scripts: 755 (executable)
- CSS/JS/JSON files: 644 (default, no config needed)
- Ensures correct permissions at installation time

**2. Runtime Permission Fix**
- New script: /usr/libexec/secubox/fix-permissions.sh
- RPCD method: luci.secubox fix_permissions
- UI control: "🔧 Fix Perms" button in Quick Actions
- Fixes all permissions and restarts services

**3. Automation & Documentation**
- secubox-tools/add-pkg-file-modes.sh: Auto-configure PKG_FILE_MODES
- PERMISSIONS-GUIDE.md: Comprehensive permissions guide
- MODULE-ENABLE-DISABLE-DESIGN.md: Enable/disable system design doc
- Updated Makefile template with PKG_FILE_MODES pattern

**Modules Updated:**
- luci-app-auth-guardian
- luci-app-bandwidth-manager
- luci-app-cdn-cache
- luci-app-client-guardian
- luci-app-crowdsec-dashboard
- luci-app-ksm-manager
- luci-app-media-flow
- luci-app-netdata-dashboard
- luci-app-netifyd-dashboard
- luci-app-network-modes
- luci-app-secubox (+ fix-permissions.sh script)
- luci-app-system-hub
- luci-app-traffic-shaper
- luci-app-vhost-manager
- luci-app-wireguard-dashboard

**Benefits:**
- No more manual permission fixes after installation
- Users can fix permissions from UI without SSH access
- Proper OpenWrt package management compliance
- Automated detection and configuration

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
2025-12-28 02:19:30 +01:00
..
.github/workflows fix: hope modules refresh 2025-12-23 18:53:18 +01:00
demo Initial commit: SecuBox v1.0.0-try2 2025-12-22 10:43:52 +01:00
htdocs/luci-static/resources fix: Add missing API functions to resolve module errors 2025-12-26 21:42:09 +01:00
root fix: Update ACL files to use proper luci.* ubus object naming 2025-12-26 21:54:00 +01:00
Makefile feat: Add comprehensive permission management system (v0.3.1) 2025-12-28 02:19:30 +01:00
README.md Initial commit: SecuBox v1.0.0-try2 2025-12-22 10:43:52 +01:00

README.md

Auth Guardian for OpenWrt

Comprehensive authentication and session management system.

Features

🎨 Captive Portal

  • Customizable splash pages
  • Logo and branding support
  • Terms of service acceptance

🔑 OAuth Integration

  • Google Sign-In
  • GitHub Authentication
  • Facebook Login
  • Twitter/X Login

🎟️ Voucher System

  • Generate access codes
  • Time-limited validity
  • Bandwidth restrictions

🍪 Session Management

  • Secure cookies (HttpOnly, SameSite)
  • Session timeout control
  • Concurrent session limits

⏭️ Bypass Rules

  • MAC whitelist
  • IP whitelist
  • Domain exceptions

Installation

opkg update
opkg install luci-app-auth-guardian

License

MIT License - CyberMind Security