Add password to client

Signed-off-by: hwipl <33433250+hwipl@users.noreply.github.com>

internal/client/client.go

@@ -44,6 +44,7 @@ func authenticateVPN() *ocrunner.LoginInfo {
 	auth.Script = vpncScript
 	auth.Server = config.VPNServer
 	auth.User = config.User
+	auth.Password = config.Password
 	auth.Authenticate()
 
 	return &auth.Login

internal/client/config.go

@@ -12,6 +12,7 @@ type ClientConfig struct {
 	CACertificate     string
 	VPNServer         string
 	User              string
+	Password          string
 }
 
 // empty returns if the config is empty
@@ -24,7 +25,8 @@ func (o *ClientConfig) empty() bool {
 		o.ClientKey == "" &&
 		o.CACertificate == "" &&
 		o.VPNServer == "" &&
-		o.User == "" {
+		o.User == "" &&
+		o.Password == "" {
 		// empty
 		return true
 	}

internal/client/config_test.go

@@ -44,6 +44,7 @@ func TestLoadClientConfig(t *testing.T) {
 		CACertificate:     "/some/ca",
 		VPNServer:         "server.example.com",
 		User:              "user1",
+		Password:          "passwd1",
 	}
 
 	// create temporary file

internal/ocrunner/authenticate.go

@@ -21,6 +21,7 @@ type Authenticate struct {
 	Script      string
 	Server      string
 	User        string
+	Password    string
 
 	Command *exec.Cmd
 	Login   LoginInfo
@@ -67,13 +68,21 @@ func (r *Authenticate) Authenticate() {
 	if r.User != "" {
 		parameters = append(parameters, user)
 	}
+	if r.Password != "" {
+		// read password from stdin and switch to non-interactive mode
+		parameters = append(parameters, "--passwd-on-stdin")
+		parameters = append(parameters, "--non-inter")
+	}
 	parameters = append(parameters, r.Server)
 
 	r.Command = exec.Command("openconnect", parameters...)
 
 	// run command: allow user input, show stderr, buffer stdout
 	var b bytes.Buffer
 	r.Command.Stdin = os.Stdin
+	if r.Password != "" {
+		r.Command.Stdin = bytes.NewBufferString(r.Password)
+	}
 	r.Command.Stdout = &b
 	r.Command.Stderr = os.Stderr
 	r.Command.Env = append(os.Environ(), r.Env...)