Manage Connection

Provides the essentials to allow your users to connect and disconnect from a server and view their connection status.

The VPN SDK provides a set of APIs to allow your users to establish and teardown a VPN connection with a server.

Establish a Connection

A connection to a server is established by calling the connect to server API using a server selected from the list servers API call.

In order to establish a connection, a SudoVPNServer is required.

Connection Configuration

Connection configuration is decided at the time of calling the connect API. It is up to you to build up a SudoVPNConfiguration object.

SudoVPNConfiguration

Property

Description

server

The SudoVPNServer that the client will/is connected to.

protocolType

The SudoVPNProtocol that the client will/is using to connect to the VPN.

When the disconnect API is called, the configured server will be set back to undefined.

Both server and protocolType can be left as undefined. In the case that server is left undefined, the best server will be attempted to connect to, using the user's current geographical location. If protocolType is left undefined, the default protocol (IPSec (IKEv2) on mobile) will be used.

Protocol Types

When connecting to a VPN, a couple of different Protocol types are available. Depending on the platform, only a subset of these types may be supported.

In a scenario where network is lost whilst connected to an IPSec (IKEv2) or UDP protocol, the VPN tunnel will remain open. This allows the connection to stay open if there are changes in the network (i.e. moving from Wi-Fi to Mobile Data).

Protocol

Description

iOS

Android

macOS

Windows

L2TP

Layer 2 Tunnel Protocol

❌

PPTP

Point-To-Point Tunnelling Protocol

❌

IPSec

Internet Protocol Security

IPSec (IKEv2)

Internet Key Exchange V2

OpenVPN UDP

OpenVPN TCP

WireGuard

In order to see which protocols are currently available via the client, use the supportedProtocols() method. This method returns the list of supported protocols mentioned above currently available to the device calling the method.

An example implementation is:

let supportedProtocols = vpnClient.supportedProtocols()
/// `supportedProtocols` contains an array of the protocols that can be used.

The listSupportedProtocols method is used to return a list of of supported protocols used as part of configuring a connection that are currently available to the client calling the method.

An example implementation of this is:

val supportedProtocols = vpnClient.listSupportedProtocols()
// [supportedProtocols] contains a list of protocols that can be used to configure a connection.

The listSupportedProtocols method is used to return a list of of supported protocols used as part of configuring a connection that are currently available to the client calling the method.

An example implementation of this is:

const supportedProtocols = vpnClient.listSupportedProtocols()
// [supportedProtocols] contains a list of protocols that can be used to configure a connection

Note that the set of protocols supported on Windows is different than macOS.

Connect to the VPN

To connect to the VPN, use the connect(withConfiguration:completion:) method. The completion will be called either when the connection process has successfully begun, or an error occurred while attempting to do so.

If configuration is nil, the best server, and default protocol type will be used.

An example implementation of calling the connect method is:

vpnClient.connect { result in
    switch result {
    case let .failure(cause):
        /// Handle/notify user of error.
    case .success:
        /// Successfully begun connection. 
}

To watch for connection state events to see when the client has successfully connected (or failed to connect), see Connection Events.

The connect(notification, revokedNotification) method is used to establish a connection to the VPN network. The notification parameter allows you to attach a persistent notification once a connection is established whereas the revokedNotification parameter allows you to emit a notification when the VPN is revoked.

Before establishing a connection, the configurationclient property must be set. If configuration is null, the best server, and default protocol type will be used.

Android requires that the application request permission from the user the first time that the application attempts to create a connection with a VPN network.

Before attempting to connect to a VPN network. The prepare(fragment: Fragment) / prepare(activity: Activity) method must be called. This method will launch an intent containing a VPN connection permission dialogue requiring user action with the result coming back via the fragment or activity onActivityForResult method which can be overridden. If the result is RESULT_OK, the application is considered prepared. The isPrepared method is used to indicate whether the user has previously given permission to connect to VPN networks.

The execution of the prepare method is required in order to perform any VPN connection operations.

An example implementation of connecting to a selected server is:

class ConnectionFragment : Fragment(), CoroutineScope {

    companion object {
        private const val VPN_PREPARE = 1000
        private const val NOTIFICATION_ID_VPN_STATUS = 1
        private const val NOTIFICATION_ID_VPN_REVOKED = 2
    }

    // val server: SudoVPNServer // Retrieved via the list servers API
    private fun connect() {
        try {
            if (sudoVPNClient.isPrepared()) {

                // Set the configuration client property with selected [server].
                sudoVPNClient.configuration = SudoVPNConfiguration(server, SudoVPNProtocol.IKEV2, false)

                // Build SudoVPNNotification objects.
                val vpnConnectionNotification = NotificationCompat.Builder(
                    requireContext(),
                    "vpnNotificationChannel"
                )
                    .setSmallIcon(R.drawable.vpn_logo)
                    .build()
                val vpnRevokedNotification = NotificationCompat.Builder(
                    requireContext(),
                    "vpnNotificationChannel"
                )
                    .setSmallIcon(R.drawable.vpn_logo)
                    .build()
                val sudoNotification = SudoVPNNotification(NOTIFICATION_ID_VPN_STATUS, vpnConnectionNotification)
                val sudoRevokedNotification = SudoVPNNotification(NOTIFICATION_ID_VPN_REVOKED, vpnRevokedNotification)

                launch {
                    try {
                        withContext(Dispatchers.IO) {
                            sudoVPNClient.connect(sudoNotification, sudoRevokedNotification)
                        }
                    } catch (e: SudoVPNException) {
                        // Handle/notify user of exception
                    }
                }
            } else {
                sudoVPNClient.prepare(this)
            }
        } catch (e: ActivityNotFoundException) {
            // Handle/notify user if prepare method could not be executed.
        }
    }

    // Handle result from calling [sudoVPNClient.prepare] method.
    override fun onActivityResult(requestCode: Int, resultCode: Int, data: Intent?) {
        super.onActivityResult(requestCode, resultCode, data)
        if (resultCode == RESULT_OK && requestCode == VPN_PREPARE) {
            connect()
        }
    }
}

To watch for connection state events to see when the client has successfully connected (or failed to connect), see Setting up a Subscription in the Android section of the Observe VPN Related Events page.

To connect to the VPN, use the connect(configuration?: SudoVPNConfiguration) method. This method operates synchronously and will return on completion.

If configuration is undefined, or does not specify a server location or a protocol, the fastest available server, and default protocol type will be used.

An example implementation of calling the connect method is:

try {
    await vpnClient.connect()
} catch (err) {
    // log error and/or retry/recover
}
if(await vpnClient.getState() == SudoVPNConnectionStatus.connected) {
    // vpn is connected
}

To determine whether the VPN is connected, use the getState() method.

Disconnect from an Established Connection

Once already connected, a user may want to deliberately disconnect, or close the connection as part of a process.

To disconnect from an already established connection, use the disconnect(completion:) method.

An example implementation of calling the disconnect method is:

vpnClient.disconnect { result in
    switch result {
    case let .failure(cause):
        /// Handle/notify user of error.
    case .success:
        /// Successfully disconnected. 
}

To watch for connection state events to see when the client has successfully disconnected (or failed to disconnect), see Connection Events.

Disconnecting from an already established connection is performed by calling the disconnect method.

An example implementation of performing a disconnection is:

 launch {
     try {
         withContext(Dispatchers.IO) {
            sudoVPNClient.disconnect()
        }
        // The disconnection process has begun.
     } catch (e: SudoVPNException) {
         // Handle/notify user of exception
     }
 }

To watch for connection state events to see when the client has successfully disconnected (or failed to disconnect), see Setting up a Subscription in the Android section of the Observe VPN Related Events page.

Disconnecting from an already established connection is performed by calling the disconnect method.

An example implementation of performing a disconnection is:

 try {
     await vpnClient.disconnect()
 } catch (err) {
     // Handle/notify user of exception
 }
 if(await vpnClient.getState() == SudoVPNConnectionStatus.disconnected) {
    // vpn is disconnected
}

PreviousManage Servers NextObserve VPN Related Events

Last updated 21 days ago