(RADIATOR) Feature request

Toomas Kärner tomkar at estpak.ee
Thu Dec 8 03:15:43 CST 2005


Yes, ofcource. Now I remember that I actually use it sord of like this in
one of my wifi radius implementation.
Thanks anyway. Your example is exactly what I had in mind.

----- Original Message ----- 
From: "Hugh Irvine" <hugh at open.com.au>
To: "Toomas Kärner" <tomkar at estpak.ee>
Cc: <radiator at open.com.au>
Sent: Thursday, December 08, 2005 12:46 AM
Subject: Re: (RADIATOR) Feature request



Hello Toomas -

My suggestion was in response to your initial question which I
thought was based on AddToReply.

An alternative approach for AuthColumnDef's could be this:


<AuthBy SQL>
......
AuthColumnDef 0, Session-Timeout, request
</AuthBy>

<AuthBy ...>
.......
AuthColumnDef 0, Session-Timeout, reply
AddToReplyIfNotExist Session-Timeout = %{Session-Timeout}
</AuthBy>


hope that helps

regards

Hugh




On 7 Dec 2005, at 19:03, Toomas Kärner wrote:

> Thats fine but thats not the case.
> Consider that kind of configuration:
>
> <AuthBy sql>
> ......
> AuthColumnDef 0 Session-Timeout
> </AuthBy>
>
> <AuthBy ...>
> .......
> AuthColumnDef 0 Session-Timeout
> </AuthBy>
> If I had stripfromreply then the first setting of session-timeout is
> pointless.
>
> Rgds.
> Toomas
>
>
> ----- Original Message -----
> From: "Hugh Irvine" <hugh at open.com.au>
> To: "Toomas Kärner" <tomkar at estpak.ee>
> Cc: <radiator at open.com.au>
> Sent: Wednesday, December 07, 2005 12:28 AM
> Subject: Re: (RADIATOR) Feature request
>
>
>>
>> Hello Toomas -
>>
>> This is why StripFromReply happens before AddToReply.
>>
>>
>> <AuthBy ...>
>> ......
>> AddToReply Session-Timeout = 900
>> </AuthBy>
>>
>> <AuthBy ...>
>> .....
>> StripFromReply Session-Timeout
>> AddToReply Session-Timeout = 1800
>> </AuthBy>
>>
>>
>> regards
>>
>> Hugh
>>
>>
>> On 7 Dec 2005, at 00:18, Toomas Kärner wrote:
>>
>>> Hi,
>>>
>>> I got an idea for a small feature. There could be a keyword
>>> defined in
>>> AuthGeneric.pm that causes different AuthBy clauses to overwrite
>>> same
>>> parameter if it already exists in the reply instead add.
>>> Exlample:
>>> AuthBy1
>>>     Inserts Session-Timeout 900 into reply
>>> AuthBy2
>>>     Inserts Session-Timeout 1800 into reply.
>>> Right now the reply will end up with the same parameter twice in it:
>>> Session-Timeout 900
>>> Session-Timeout 1800
>>> and that makes no sense in some cases.
>>> But if that new keyword (OverwriteAttributesThatExist for example)
>>> is set
>>> then it would cause radiator to "change_attr if exists" instead of
>>> just
>>> "add_attr" and the endresult would just be:
>>> Session-Timeout 1800.
>>>
>>> What you think? I could probably code it myself but then I wouldn't
>>> have
>>> standard code anymore.
>>> Rgds.
>>> Toomas
>>>
>>> --
>>> Archive at http://www.open.com.au/archives/radiator/
>>> Announcements on radiator-announce at open.com.au
>>> To unsubscribe, email 'majordomo at open.com.au' with
>>> 'unsubscribe radiator' in the body of the message.
>>
>>
>> NB:
>>
>> Have you read the reference manual ("doc/ref.html")?
>> Have you searched the mailing list archive (www.open.com.au/archives/
>> radiator)?
>> Have you had a quick look on Google (www.google.com)?
>> Have you included a copy of your configuration file (no secrets),
>> together with a trace 4 debug showing what is happening?
>>
>> -- 
>> Radiator: the most portable, flexible and configurable RADIUS server
>> anywhere. Available on *NIX, *BSD, Windows, MacOS X.
>> -
>> Nets: internetwork inventory and management - graphical, extensible,
>> flexible with hardware, software, platform and database independence.
>> -
>> CATool: Private Certificate Authority for Unix and Unix-like systems.
>>
>>
>> --
>> Archive at http://www.open.com.au/archives/radiator/
>> Announcements on radiator-announce at open.com.au
>> To unsubscribe, email 'majordomo at open.com.au' with
>> 'unsubscribe radiator' in the body of the message.


NB:

Have you read the reference manual ("doc/ref.html")?
Have you searched the mailing list archive (www.open.com.au/archives/
radiator)?
Have you had a quick look on Google (www.google.com)?
Have you included a copy of your configuration file (no secrets),
together with a trace 4 debug showing what is happening?

-- 
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows, MacOS X.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
-
CATool: Private Certificate Authority for Unix and Unix-like systems.


--
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.


More information about the radiator mailing list