(RADIATOR) Add IP from SQL table to AuthBy Radius Reply packe t
Frank Danielson
fdanielson at dataonair.com
Wed Oct 23 12:17:41 CDT 2002
You can call your AuthBy SQL from a ReplyHook making the whole thing easier
than you might think. Examples are in goodies/hooks.txt.
-----Original Message-----
From: alexander.deboer at kpn.com [mailto:alexander.deboer at kpn.com]
Sent: Wednesday, October 23, 2002 11:59 AM
To: radiator at open.com.au
Subject: (RADIATOR) Add IP from SQL table to AuthBy Radius Reply packet
Hi all,
I'm trying to solve the following problem. Our radiator proxies
authentication requests. Upon receiving the response from the remote radius
server, we want to add an user-specific IP-address from our own SQL table.
I'm considering the following approach:
<AuthBy Group>
Identifier proxy
AuthByPolicy ContinueWhileAccept
<AuthBy Radius>
Host ...
....
</AuthBy>
<AuthBy SQL>
DBSource dbi:mysql:radius
DBUsername ...
DBAuth ...
AuthSelect select ipaddress from tblAccess where
username='%u'
AuthColumnDef 0, GENERIC, reply
</AuthBy>
</AuthBy>
However, due to the asynchronous behavior of AuthBy Radius this won't work.
See also:
http://www.open.com.au/archives/radiator/2001-04/msg00192.html
http://www.open.com.au/archives/radiator/2002-08/msg00107.html
I'm a bit reluctant to use the Synchronous parameter, since we cannot really
trust the remote radius server.
Another solution could be using a ReplyHook. However, this seems a bit
cumbersome to me; writing a failure-back-off-fall-back procedure to multiple
SQL-servers myself, while it is so nicely implemented in Radiators AuthBy
SQL.
Does anybody has a suggestion to overcome this problem?
Cheers,
Alexander
> ----------------------------------------------------------------
> dr. Alexander P. de Boer
> KPN Royal Dutch Telecom
> Room L C7, P.O.Box 421, 2260 AK Leidschendam
> The Netherlands
>
===
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.
===
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.
More information about the radiator
mailing list