Skip to content

Releases: Ilyntiy/ocservice

ocservice v1.2.0

29 Apr 19:59
@Ilyntiy Ilyntiy
v1.2.0
5050ad2
This commit was signed with the committer’s verified signature.
Ilyntiy Ilyntiy Igorevich
GPG key ID: 2EFAB720E62EEF8D
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
ocservice v1.2.0 Latest
Latest

Release 1.2.0

What's new:

System status block
The main menu now shows system-level metrics alongside ocserv stats:

  • CPU load average (1 / 5 / 15 min)
  • Memory usage (used / total)
  • Server TLS certificate expiry

SERVER_CERT is parsed automatically from ocserv.conf during install and added to sudoers with minimal permissions.

Full kick with session invalidation
On ocserv 1.4.2+, kicking a user now calls terminate user instead of disconnect user — the session cookie is invalidated and the client cannot reconnect automatically. Older versions fall back to the previous behavior with an upgrade notice.

ocnames refactor
write_config_per_user() is now a shared function in ocnames, sourced by gen-client, gen-login and user-center. Template duplication eliminated. Rebuild cache now creates missing config-per-user files for existing users automatically — existing files are never touched.

Performance
get_max_sessions() now preloads all config-per-user files in a single pass at startup instead of running grep + awk per user on every open.

Fixes and improvements

  • Color indicators for certificate expiry — in both the main menu and User Management Center
  • Fixed trailing slash on OCSERV_PREFIX in installer output

Upgrading from v1.1.x

git pull
sudo ./install.sh

The installer will patch ocservice.conf and sudoers automatically — no manual edits needed.

Assets 2
Loading

ocservice v1.1.0

11 Apr 10:21
@Ilyntiy Ilyntiy
v1.1.0
ee5dd66
This commit was signed with the committer’s verified signature.
Ilyntiy Ilyntiy Igorevich
GPG key ID: 2EFAB720E62EEF8D
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
ocservice v1.1.0

Release 1.1.0

What's new:

Certificate cache

User Management Center now reads certificate dates from a local cache file instead of
calling openssl for every user on each open. At 100+ users the difference is dramatic.

  • r — Rebuild cache in User Management Center to initialize or resync the cache
  • Cache is updated automatically on user creation and deletion
  • Existing installations: run Rebuild once after updating

config-per-user template

A ready-to-use commented template is now created automatically for every new user
(both certificate and login). Includes static IP, transport, bandwidth and timeout
settings — uncomment what you need.

Smart updater

install.sh now detects existing installations automatically via the symlink.
On update: just run sudo ./install.sh — no questions asked, scripts are updated,
config is patched, user data is never touched.

Fixes

  • max-same-clients column in User Management Center now shows - instead of blank
    when the value is missing from config-per-user
  • Fixed trailing slash on OCSERV_PREFIX causing double slash in paths

Upgrading from v1.0.x

git pull
sudo ./install.sh

After updating, open User Management Center and run r — Rebuild certificate cache.

Loading

ocservice v1.0.1

22 Mar 18:00
@Ilyntiy Ilyntiy
v1.0.1
1bf4fc6
This commit was signed with the committer’s verified signature.
Ilyntiy Ilyntiy Igorevich
GPG key ID: 2EFAB720E62EEF8D
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
ocservice v1.0.1

Release 1.0.1

What's new:

  • Username pool — on user creation, choose between picking a random name from the list or entering manually. Issued names are tracked automatically and returned to the pool when a user is deleted. The name list (names) can be extended at any time.
  • Scripts moved to a dedicated directory (~/bin/ocservice/ by default)
  • New menu item: Edit name pool — edit the name list directly from the main menu
  • install.sh now creates a symlink at /usr/local/bin/ocservice
  • install.sh now auto-detects non-standard port from ocserv.conf and includes it in the gateway URL

Upgrading from 1.0.0:

This release changes the install directory structure. A clean reinstall is required. First remove the old files:

rm ~/bin/{ocservice,gen-client,gen-login,user-center,ocservice.conf}
sudo rm /etc/sudoers.d/ocservice

After removing the old files, follow the Quick start instructions in the README to reinstall.

Loading

ocservice v1.0.0

18 Mar 20:53
@Ilyntiy Ilyntiy
v1.0.0
c149df5
This commit was signed with the committer’s verified signature.
Ilyntiy Ilyntiy Igorevich
GPG key ID: 2EFAB720E62EEF8D
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
ocservice v1.0.0

First public release of ocservice — a set of bash scripts for managing ocserv OpenConnect VPN server with easy-rsa certificate management.

What's included

User management

  • Create certificate-based users: generates easy-rsa client certificate and exports as .p12 file
  • Create login/password users via ocpasswd
  • Configurable certificate validity period and max simultaneous connections per user

User Management Center

  • Table view of all users with online status, certificate dates, ban points and connection limit
  • View live connection details for online users
  • Edit per-user config, kick, reset ban points or delete users

Main menu

  • Live server status: uptime, active sessions, RX/TX traffic, auth failures, banned IPs
  • Quick access to ocserv log, config file, restart and reload

Installer

  • Interactive install.sh that parses ocserv.conf automatically
  • Auto-detects camouflage URL and secret from ocserv.conf
  • Sets up file permissions and sudoers with minimal required privileges
  • Supports cert, plain and both authentication modes
Loading