strongSwan

= strongSwan Manager =

'''strongSwan Manager''' is a web application which interacts with the IKEv2 daemon [wiki:charon] via an XML interface running the [wiki:SMP] information query and control protocol.

[[Image(htdocs:manager.png)]]

----

'''''strongSwan Manager is still under heavy development and not intended for production use! '''''

----

== Building strongSwan Manager ==

The manager is based on a FastCGI application and uses the !ClearSilver templating engine to build the web sites. Thus you will need

 * !ClearSilver including headers (Debian: clearsilver-dev)

 * FastCGI headers and library (Debian: libfcgi-dev)

 * SQLite3 with headers (Debian: libsqlite3-dev)

To build the manager, add the following options to ./configure

{{{

--enable-xml --enable-manager

}}}

== Setting up Apache 2 ==

As the manager uses FastCGI, any web server may be used to host the application. Here we look at the configuration of Apache2 using ''mod-fastcgi''.

In addition to the Apache2 web server itself, you'll need

 * mod-fastcgi (Debian: libapach2-mod-fastcgi)

Make sure to enable the new module and that the following fastcgi option is set (e.g. in mods-enabled/fastcgi.conf):

{{{

AddHandler fastcgi-script .fcgi

}}}

Static files are directly served by Apache, everything else is served by the FastCGI application. Add these two lines to your website:

{{{

Alias /manager/static /usr/local/libexec/ipsec/templates/static

ScriptAlias /manager /usr/local/libexec/ipsec/manager.fcgi

}}}

Adapt these paths according to your ''--prefix'' or ''--libexecdir'' [wiki:InstallationDocumentation installation] settings.

== Logging in ==

Now you can surf to 

{{{

http://host/manager/status/ikesalist

}}}

The shipped configuration allows you to log in using ''strongSwan'' with the password ''strongi''. Charon currently listens on TCP port 4502, so

choose that configuration for now.