(RADIATOR) PreProcessingHook to bypass further processing

Hugh Irvine hugh at open.com.au
Tue Feb 10 16:02:01 CST 2004 

Hello Kwang -

The usual way to do what you describe is to use an AuthBy INTERNAL 
clause followed by a PostAuthHook.

For your question about Handlers, it is more usual to specify a final 
<Handler> to catch "everything else".

# deal with something specific

<Handler ......>
	.....
</Handler>

# deal with everything else

<Handler>
	.....
</Handler>


regards

Hugh


On 11 Feb 2004, at 01:57, Kwang Moon wrote:

> Hi,
>
> Does anyone know if it's possible to carry out some checks in a
> PreProcessingHook, and based on the results to immediately halt the 
> handling
> process and send back a $main::REJECT to the client?
>
> The reason I want to do this is because I have heaps of handlers (all 
> pretty
> much doing the same thing), the only difference being the handler check
> item.  So, what I want to do is create one handler to deal with say
> Access-Request packets and then verify the check item within the say a
> PreProcessingHook (ie if it doesn't match then somehow send a reject
> immediately without further processing, and if it passes then continue 
> with
> hook and return back to the handler).
>
> There was a posting earlier last year:
> http://www.open.com.au/archives/radiator/2003-05/msg00147.html
> asking a very similar question, however, there didn't appear to be a
> resolution.
>
> If this is not possible, then (a question to Mike or Hugh) what's the
> likelihood of getting a feature added to the handler clause similar to 
> the
> IdenticalClients.  It could look something like:
> IdenticalHandlers <attribute=value, attribute=value, ...>
>
>
> Cheers,
> Kwang
>
>
>
> ===
> Archive at http://www.open.com.au/archives/radiator/
> Announcements on radiator-announce at open.com.au
> To unsubscribe, email 'majordomo at open.com.au' with
> 'unsubscribe radiator' in the body of the message.
>
>

NB: have you included a copy of your configuration file (no secrets),
together with a trace 4 debug showing what is happening?

-- 
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows, MacOS X.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
-
CATool: Private Certificate Authority for Unix and Unix-like systems.

===
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.

More information about the radiator mailing list