From 2b4dda0678a6b7ae790ec369c658d939e7ee29fc Mon Sep 17 00:00:00 2001
From: ignas2526 <bitbucket@ignaspoklad.com>
Date: Mon, 31 Mar 2025 23:54:20 +0200
Subject: [PATCH] Ability to specify SAML host

---
 src/config.h      |  1 +
 src/http_server.c |  5 ++++-
 src/main.c        | 10 ++++++++++
 3 files changed, 15 insertions(+), 1 deletion(-)

diff --git a/src/config.h b/src/config.h
index 8eecddcf..c01319a8 100644
--- a/src/config.h
+++ b/src/config.h
@@ -92,6 +92,7 @@ struct vpn_config {
 	int			password_set;
 	char			otp[OTP_SIZE + 1];
 	char			*cookie;
+	char			saml_host[GATEWAY_HOST_SIZE + 1];
 	uint16_t		saml_port;
 	char			saml_session_id[MAX_SAML_SESSION_ID_LENGTH + 1];
 	char			*otp_prompt;
diff --git a/src/http_server.c b/src/http_server.c
index b5783467..3c633aef 100644
--- a/src/http_server.c
+++ b/src/http_server.c
@@ -248,7 +248,10 @@ int wait_for_http_request(struct vpn_config *config)
 	}
 
 	address.sin_family = AF_INET;
-	address.sin_addr.s_addr = htonl(INADDR_LOOPBACK);
+	if (config->saml_host != NULL)
+		address.sin_addr.s_addr = inet_addr(config->saml_host);
+	else
+		address.sin_addr.s_addr = htonl(INADDR_LOOPBACK);
 	address.sin_port = htons(config->saml_port);
 
 	// Forcefully attaching socket to the port
diff --git a/src/main.c b/src/main.c
index bff329d4..f0423c89 100644
--- a/src/main.c
+++ b/src/main.c
@@ -119,6 +119,7 @@ PPPD_USAGE \
 "  --cookie=<cookie>             A valid session cookie (SVPNCOOKIE).\n" \
 "  --cookie-on-stdin             Read the cookie (SVPNCOOKIE) from standard input.\n" \
 "  --saml-login[=port]           Run a http server to handle SAML login requests\n" \
+"  --saml-host=<host>            Listen for SAML login requests on different host \n" \
 "  -o <otp>, --otp=<otp>         One-Time-Password.\n" \
 "  --otp-prompt=<prompt>         Search for the OTP prompt starting with this string.\n" \
 "  --otp-delay=<delay>           Wait <delay> seconds before sending the OTP.\n" \
@@ -227,6 +228,7 @@ int main(int argc, char *argv[])
 		.password = {'\0'},
 		.password_set = 0,
 		.cookie = NULL,
+		.saml_host = NULL,
 		.saml_port = 0,
 		.saml_session_id = {'\0'},
 		.otp = {'\0'},
@@ -291,6 +293,7 @@ int main(int argc, char *argv[])
 		{"cookie",               required_argument, NULL, 0},
 		{"cookie-on-stdin",      no_argument, NULL, 0},
 		{"saml-login",           optional_argument, NULL, 0},
+		{"saml-host",            optional_argument, NULL, 0},
 		{"otp",                  required_argument, NULL, 'o'},
 		{"otp-prompt",           required_argument, NULL, 0},
 		{"otp-delay",            required_argument, NULL, 0},
@@ -609,6 +612,13 @@ int main(int argc, char *argv[])
 				free(cookie);
 				break;
 			}
+			if (strcmp(long_options[option_index].name,
+			           "saml-host") == 0) {
+				free(cli_cfg.saml_host);
+				strncpy(cli_cfg.saml_host, optarg, GATEWAY_HOST_SIZE);
+				cli_cfg.saml_host[GATEWAY_HOST_SIZE] = '\0';
+				break;
+			}
 			if (strcmp(long_options[option_index].name,
 			           "saml-login") == 0) {
 				long port = 8020;