Subversion Repositories ALCASAR

Compare Revisions

Ignore whitespace Rev 2705 → Rev 2706

/conf/radius/alcasar-with-ldap
26,6 → 26,7
if ((ok || updated) && User-Password) {
update control {
Auth-Type := LDAP
Tmp-String-0 := "ldap" # AuthType SQL group
}
}
}
/conf/radius/queries.conf
46,7 → 46,7
#
# By default the default_user_profile is not set
#
default_user_profile = "ldap"
#default_user_profile = "DEFAULT"
 
#######################################################################
# NAS Query
99,10 → 99,10
# ORDER BY id"
 
# Use these for case sensitive usernames.
group_membership_query = "SELECT groupname \
FROM ${usergroup_table} \
WHERE username = BINARY '%{SQL-User-Name}' \
ORDER BY priority"
# group_membership_query = "SELECT groupname \
# FROM ${usergroup_table} \
# WHERE username = BINARY '%{SQL-User-Name}' \
# ORDER BY priority"
 
# group_membership_query = "SELECT groupname \
# FROM ${usergroup_table} \
109,17 → 109,29
# WHERE username = '%{SQL-User-Name}' \
# ORDER BY priority"
 
authorize_group_check_query = "SELECT id, groupname, attribute, \
Value, op \
FROM ${groupcheck_table} \
WHERE groupname = '%{Sql-Group}' \
ORDER BY id"
authorize_group_reply_query = "SELECT id, groupname, attribute, \
value, op \
FROM ${groupreply_table} \
WHERE groupname = '%{Sql-Group}' \
ORDER BY id"
group_membership_query = "SELECT '%{SQL-User-Name}'"
 
# authorize_group_check_query = "SELECT id, groupname, attribute, \
# Value, op \
# FROM ${groupcheck_table} \
# WHERE groupname = '%{Sql-Group}' \
# ORDER BY id"
# authorize_group_reply_query = "SELECT id, groupname, attribute, \
# value, op \
# FROM ${groupreply_table} \
# WHERE groupname = '%{Sql-Group}' \
# ORDER BY id"
authorize_group_check_query = "SELECT id, '%{SQL-User-Name}', attribute, value, op FROM ( \
( SELECT id, attribute, value, op FROM ${groupcheck_table} gr LEFT JOIN radusergroup ug ON gr.groupname = ug.groupname WHERE username = '%{SQL-User-Name}' ORDER BY ug.priority) UNION \
( SELECT id, attribute, value, op FROM ${groupcheck_table} WHERE groupname = '%{control:Tmp-String-0}') UNION \
( SELECT id, attribute, value, op FROM ${groupcheck_table} WHERE groupname = 'default') \
) attrs GROUP BY attribute"
authorize_group_reply_query = "SELECT id, '%{SQL-User-Name}', attribute, value, op FROM ( \
( SELECT id, attribute, value, op FROM ${groupreply_table} gr LEFT JOIN radusergroup ug ON gr.groupname = ug.groupname WHERE username = '%{SQL-User-Name}' ORDER BY ug.priority) UNION \
( SELECT id, attribute, value, op FROM ${groupreply_table} WHERE groupname = '%{control:Tmp-String-0}') UNION \
( SELECT id, attribute, value, op FROM ${groupreply_table} WHERE groupname = 'default') \
) attrs GROUP BY attribute"
 
#######################################################################
# Accounting Queries
#######################################################################