(RADIATOR) Question about parsing realms.

Terry Simons galimore at mac.com
Wed Aug 4 21:16:47 CDT 2004


Hello Hugh,

Thanks for the information.

Is it possible to combine the "no realm" option in a handler as per my 
initial example so I can match some realm, and no realm at the same 
time, or would I have to split that out and do something like this:

# Match domain.com
<Handler Realm=domain.com>
</Handler>

# Match no realm - Is this even possible with a "Handler" clause?
<Handler Realm=//>
</Handler>

# Match anything else
<Handler Realm=DEFAULT>
</Handler>

I'm using Handlers... so I guess my other question is whether the "no 
realm" portion is possible to do, like above.

Thanks!

- Terry

On Aug 4, 2004, at 7:35 PM, Hugh Irvine wrote:

>
> Hi Terry -
>
> You can do this with Realms:
>
> <Realm domain.com>
> 	# match domain.com
> 	....
> </Realm>
>
> <Realm DEFAULT>
> 	# match any other Realm
> 	.....
> </Realm>
>
> <Realm>
> 	# match no Realm
> 	.....
> </Realm>
>
> regards
>
> Hugh
>
>
> On 5 Aug 2004, at 07:29, Terry Simons wrote:
>
>> Hi everybody,
>>
>> I have a question about parsing realms out.
>>
>> Is there some sort of identifier that can be used to indicate "no 
>> realm"?
>>
>> What I mean is, can I distinguish between "somebody at domain.com" and 
>> "somebody" with a token matching on the "nothing" realm?
>>
>> What I don't want to do is match on everything, so I want to do 
>> something like:
>>
>> <Handler Realm=/domain.com|NOTHING/>
>>
>> Where "NOTHING" is matching on an empty realm?
>>
>> I don't want to use Realm=/.*/ as a fallthrough, because that doesn't 
>> fit the need that I am trying to fulfill.  (Actualy, .* would be used 
>> in any other case... )
>>
>> Thanks!
>>
>> - Terry
>>
>> --
>> Archive at http://www.open.com.au/archives/radiator/
>> Announcements on radiator-announce at open.com.au
>> To unsubscribe, email 'majordomo at open.com.au' with
>> 'unsubscribe radiator' in the body of the message.
>>
>>
>
> NB: have you included a copy of your configuration file (no secrets),
> together with a trace 4 debug showing what is happening?
>
> -- 
> Radiator: the most portable, flexible and configurable RADIUS server
> anywhere. Available on *NIX, *BSD, Windows, MacOS X.
> -
> Nets: internetwork inventory and management - graphical, extensible,
> flexible with hardware, software, platform and database independence.
> -
> CATool: Private Certificate Authority for Unix and Unix-like systems.
>

--
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.


More information about the radiator mailing list