https://github.com/supermarsx/cdp-auth

CEF Client (Chrome/Chromium) CDP authentication automation tool for mRemoteNG
https://github.com/supermarsx/cdp-auth

automation cef-client chrome chromium mremoteng

Last synced: 22 days ago
JSON representation

CEF Client (Chrome/Chromium) CDP authentication automation tool for mRemoteNG

• Host: GitHub
• URL: https://github.com/supermarsx/cdp-auth
• Owner: supermarsx
• License: mit
• Created: 2023-08-10T13:49:36.000Z (over 1 year ago)
• Default Branch: main
• Last Pushed: 2023-09-19T07:43:30.000Z (over 1 year ago)
• Last Synced: 2024-04-17T01:45:12.554Z (8 months ago)
• Topics: automation, cef-client, chrome, chromium, mremoteng
• Language: TypeScript
• Homepage:
• Size: 281 KB
• Stars: 1
• Watchers: 1
• Forks: 0
• Open Issues: 0
• Metadata Files:
  • Readme: readme.md
  • License: license.md

Awesome Lists containing this project

README

        
# cdp-auth

A CEF Client (Chrome/Chromium) CDP authentication automation tool for mRemoteNG. Allows you to auto fill forms and login to some types of login forms automagically and using Chrome inside of mRemoteNG.

## Changelog

0.0.2: 

- Added Field name typed automation option

## Known bugs/limitations

- Doesn't handle element ids or names with commas

- Doesn't handle iframe ids with commas

- Doesn't handle usernames or passwords with commas

- Sometimes startup is slow

- Sometimes `field_id` mode bugs out and can't login

- Passes clear password on a shell execute instruction to `cdp-auth`

- Can open a single instance of each login due to debug port

- Sometimes enter key on typed forms causes cdp error after login, workaround just by pressing the "back" button

## Possible bug fixes

- Handling commas, Wrap parameters in quotes or something maybe

- Passing clear passwords on shell execute, encrypt them with AES and store a key internally somewhere maybe or temp file?

## Known working logins

- Any basic auth interfaces, routers, switches, etc.

- pfSense (using field_id like `field_id,ADMINUSER,usernamefld,passwordfld`)

- HP Integrated Lights Out or ILO (using field_id+iframe like `field_id+iframe,ADMINUSER,usernameInput,passwordInput,appFrame`)

- Joomla (using field_id like `field_id,ADMINUSER,mod-login-username,mod-login-password`)

- Portainer (using field_id_typing like `field_id_typing,ADMINUSER,username,password`)

- Nginx Manager (using field_name like `field_name,ADMINUSER,identity,secret`)

- SQLPad (using field_name_typing like `field_name_typing,ADMINUSER,email,password`)

- TP-Link managed switch (using field_id like `field_id,ADMINUSER,username,password`)

- 

## Known not working logins

- ...

Note: Please report any working/non-working login with its full method to be integrated in the list. Do it by opening an issue or something.

## Quick start

### `cefclient-embedded-passthrough`

1. Download the latest `cdp-auth` [release](https://github.com/supermarsx/cdp-auth/releases) (0.0.3)

2. Download cef client binary (if you don't have it yet) you can get this one from the [official source](https://github.com/chromiumembedded/cef), [spotifycdn mirror](https://github.com/chromiumembedded/cef) [my github mirror](https://github.com/supermarsx/mirror-cef_binary_155.3.13)

3. Extract `cdp-auth` binary to cef client folder

4. Configure `cefclient-embedded-passthrough` as an external tool 

    `cefclient-embedded-passthrough` should be passed the following arguments: 

    `%HOSTNAME% %USERFIELD% %PASSWORD%`

    pick "try to integrate" (Very important if you want it to be embedded)    

5. Configure connections like

    - **Hostname/IP**: Full url with protocol and port like: https://examplemgmt.com:9000

    - **Password**: User password as normal   

    - **Protocol**: External Tool   

    - **External Tool**: (whatever you set as your cefclient-embedded-passthrough)  

    - **User field**: Depending on the type of authentication this field will look differently (refer to types of authentication below)   

6. Check if your cefclient folder contains `cefclient-embedded-passthrough`, `cdp-auth` and `messagebox` beside `cefclient`.

7. Enjoy

   

### Types of authentication

Your "User Field" will look differently depending on the type of login form:

--

Basic Authentication: `basic_auth`: Basic authentication the uses a small box on top of the browser, common in some routers and switches

- format: `basic_auth,USERNAME`

- example: `basic_auth,admin`

--

Form Field ID: `field_id`: Form authentication using username and password input IDs

- format: `field_id,USERNAME,USERNAMEFIELDID,PASSWORDFIELDID`

- example: `field_id,administrator,usernameField,passwordField`

--

Form Field Name: `field_name`: Form authentication using username and password input names

- format: `field_name,USERNAME,USERNAMEFIELDNAME,PASSWORDFIELDNAME`

- example: `field_name,administrator,user,pass`

--

Form Field ID (typed): `field_id_typing`: Form authentication using username and password input IDs but values are "typed" in (Alternative when `field_id` doesn't work)

- format: `field_id_typing,USERNAME,USERNAMEFIELDID,PASSWORDFIELDID`

- example: `field_id_typing,administrator,usernameField,passwordField`

--

Form Field Name (typed): `field_name_typing`: Form authentication using username and password input names but values are "typed" in (Alternative when `field_name` doesn't work)

- format: `field_name_typing,USERNAME,USERNAMEFIELDNAME,PASSWORDFIELDNAME`

- example: `field_name_typing,administrator,usernameField,passwordField`

--

Form Field ID on Iframe: `field_id+iframe`: Form authentication using username and password input IDs when they're inside an iframe ID

- format: `field_id+iframe,USERNAME,USERNAMEFIELDID,PASSWORDFIELDID,IFRAMEID`

- example: `field_id+iframe,administrator,usernameField,passwordField,loginFrame`

You'll need to check the specific form you want to login using Inspect and see what type of form it is and whats the most adequate solution.

## Getting started with source

1. Clone the repository

2. Install modules using ` npm install `

3. .…

4. Profit?

You can do npm start and pass arguments with it, you should because it doesn't really work otherwise.

Also you might need to recreate the `sea` folder and `dist` folder inside of it for the build to be successful.

`cdp-auth-passthrough.au3` is a small passthrough that hide the SEA console window on launch, very useful when not debugging to avoid pesky windows popping up.

`cefclient-embedded-passthrough.au3` is a bigger version of `cdp-auth-passthrough.au3` that generates a random debug port, embeds cefclient on a gui and serves as a passthrough for cdp-auth. (Current recommended way of automation)

### Auxiliary npm scripts

```

  "scriptsComments": {

    "start": "Run cdp-auth with arguments (recommended for debugging)",

    "tsbuild":  "Clean build typescript to javascript",

    "esbuild": "Create a commonjs version of the app to be built into a SEA",

    "sea-build": "Executes the builder script",

    "sea-build-full": "Run all necessary build steps"

  },

```

## License

Distributed under MIT License. See `license.md` for more information.