Skip to content

dannyota/fortimgr

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

20 Commits
docs
docs
 
 
.gitignore
.gitignore
 
 
CHANGELOG.md
CHANGELOG.md
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
address.go
address.go
 
 
address_test.go
address_test.go
 
 
adom.go
adom.go
 
 
adom_test.go
adom_test.go
 
 
client.go
client.go
 
 
client_test.go
client_test.go
 
 
convert.go
convert.go
 
 
convert_test.go
convert_test.go
 
 
device.go
device.go
 
 
device_assigned_package.go
device_assigned_package.go
 
 
device_assigned_package_test.go
device_assigned_package_test.go
 
 
device_network.go
device_network.go
 
 
device_network_test.go
device_network_test.go
 
 
device_summary.go
device_summary.go
 
 
device_summary_test.go
device_summary_test.go
 
 
device_test.go
device_test.go
 
 
errors.go
errors.go
 
 
firewall_object_variants.go
firewall_object_variants.go
 
 
firewall_object_variants_test.go
firewall_object_variants_test.go
 
 
firmware.go
firmware.go
 
 
firmware_test.go
firmware_test.go
 
 
go.mod
go.mod
 
 
install.go
install.go
 
 
install_test.go
install_test.go
 
 
interface.go
interface.go
 
 
interface_test.go
interface_test.go
 
 
ippool.go
ippool.go
 
 
ippool_test.go
ippool_test.go
 
 
live_capture_test.go
live_capture_test.go
 
 
normalized_interface.go
normalized_interface.go
 
 
normalized_interface_test.go
normalized_interface_test.go
 
 
objrev.go
objrev.go
 
 
objrev_test.go
objrev_test.go
 
 
option.go
option.go
 
 
pagination_test.go
pagination_test.go
 
 
policy.go
policy.go
 
 
policy_test.go
policy_test.go
 
 
request.go
request.go
 
 
response.go
response.go
 
 
response_test.go
response_test.go
 
 
revision.go
revision.go
 
 
revision_test.go
revision_test.go
 
 
route.go
route.go
 
 
route_test.go
route_test.go
 
 
schedule.go
schedule.go
 
 
schedule_test.go
schedule_test.go
 
 
secprofile.go
secprofile.go
 
 
secprofile_test.go
secprofile_test.go
 
 
service.go
service.go
 
 
service_test.go
service_test.go
 
 
smoke.go
smoke.go
 
 
system.go
system.go
 
 
system_test.go
system_test.go
 
 
testhelper_test.go
testhelper_test.go
 
 
types.go
types.go
 
 
user.go
user.go
 
 
user_test.go
user_test.go
 
 
virtualip.go
virtualip.go
 
 
virtualip_test.go
virtualip_test.go
 
 
vpn.go
vpn.go
 
 
vpn_test.go
vpn_test.go
 
 
workflow.go
workflow.go
 
 
workflow_test.go
workflow_test.go
 
 
zone.go
zone.go
 
 
zone_test.go
zone_test.go
 
 

Repository files navigation

fortimgr

Unofficial Go SDK for FortiManager using the FlatUI (Web UI) API.

Use at your own risk. FlatUI is an undocumented internal API. It may break with any firmware update. Fortinet does not support or endorse this library.

⚠️ When to Use

Scenario Recommendation
JSON-RPC API available Use the official API instead
JSON-RPC disabled (hardened env) Use this SDK
Write operations needed Not supported (read-only SDK)

📚 Install

go get danny.vn/fortimgr

Requires Go 1.24+.

🚀 Quick Start

package main

import (
    "context"
    "fmt"
    "log"

    "danny.vn/fortimgr"
)

func main() {
    client, err := fortimgr.NewClient("https://fortimanager.example.com",
        fortimgr.WithCredentials("admin", "password"),
        fortimgr.WithInsecureTLS(), // self-signed certs
    )
    if err != nil {
        log.Fatal(err)
    }
    defer client.Close()

    ctx := context.Background()
    if err := client.Login(ctx); err != nil {
        log.Fatal(err)
    }

    // "root" is the default ADOM (Administrative Domain).
    devices, err := client.ListDevices(ctx, "root")
    if err != nil {
        log.Fatal(err)
    }
    for _, d := range devices {
        fmt.Printf("%s (%s) - %s\n", d.Name, d.SerialNumber, d.Status)
    }
}

🏢 ADOMs

Every List* method takes an adom parameter — this is a FortiManager Administrative Domain (ADOM). ADOMs partition managed devices, policies, and objects into isolated scopes for multi-tenant or delegated management.

Most single-tenant deployments use "root" (the default ADOM).

🛡️ Supported Resources

See FEATURES.md for full coverage and JSON-RPC comparison.

Category Resources Count
System ADOMs, ADOM Revisions, Workflow Sessions, Workflow Logs, System Status, Device Firmware, Firmware Upgrade Paths, Device PSIRT 8
Device Management Devices, Assigned Packages, Device Summary, Interfaces, Routes, DNS/DDNS, IPAM, SD-WAN, Zones 14
Firewall Policy Policy Packages, Policies 2
Firewall Objects Address/VIP/IP Pool IPv4+IPv6, Groups, Services, Internet Services 19
Scheduling Recurring Schedules, One-time Schedules, Schedule Groups 3
Security Profiles Antivirus, IPS, Web Filter, App Control, SSL/SSH 5
User & Auth Users, User Groups, LDAP Servers, RADIUS Servers 4
VPN IPSec Phase 1, IPSec Phase 2 2

✅ Testing

go test ./...

Smoke test against a live FortiManager:

FORTIMGR_ADDRESS=https://fm.example.com \
FORTIMGR_USERNAME=admin \
FORTIMGR_PASSWORD=secret \
go run smoke.go

⚠️ Known Issues

Issue Workaround
Non-RFC 5280 certs (negative serial numbers) Use WithX509NegativeSerial()
No API versioning Behavior may differ across FortiOS versions

📖 Documentation

Document Description
ARCHITECTURE FlatUI protocol, package layout, design decisions
FEATURES Resource coverage and JSON-RPC comparison
PLAN Development roadmap

📋 License

MIT — see LICENSE.

About

Unofficial Go SDK for FortiManager FlatUI API. Use at your own risk.

Topics

golang sdk flatui fortigate fortinet fortimanager

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases 10

v1.3.0 Latest
Apr 18, 2026
+ 9 releases

Packages

 
 
 

Contributors

Languages