WebSVN – ALCASAR – Diff – /web/acc/admin/lib/alcasar/freeradius/siteconfig.php



	#
	#  Look in an SQL database.  The schema of the database
	#  is meant to mirror the \"users\" file.
	#
	#  See \"Authorization Queries\" in sql.conf
".$this->_writeModule($this->_sections['authorize']->sql, 'sql')."
".$this->_writeModule($this->_sections['authorize']->noresetcounter, 'noresetcounter')."
".$this->_writeModule($this->_sections['authorize']->dailycounter, 'dailycounter')."
".$this->_writeModule($this->_sections['authorize']->monthlycounter, 'monthlycounter')."
	#
	#  If you are using /etc/smbpasswd, and are also doing
	#  mschap authentication, the un-comment this line, and
	#  configure the 'etc_smbpasswd' module, above.
".$this->_writeModule($this->_sections['authorize']->etc_smbpasswd, '#	etc_smbpasswd')."
	#
	#  The ldap module will set Auth-Type to LDAP if it has not
	#  already been set
".$this->_writeModule($this->_sections['authorize']->ldap, '#	ldap {
	#		fail = 1
	#	}')."
	#
	#  Enforce daily limits on time spent logged in.
".$this->_writeModule($this->_sections['authorize']->daily, '#	daily')."
	#
	# Use the checkval modulel

	#  For Simultaneous-Use tracking.
	#
	#  Due to packet losses in the network, the data here
	#  may be incorrect.  There is little we can do about it.
".$this->_writeModule($this->_sections['accounting']->radutmp, '#	radutmp')."
".$this->_writeModule($this->_sections['accounting']->sradutmp, '#	sradutmp')."
 
	#  Return an address to the IP Pool when we see a stop record.
".$this->_writeModule($this->_sections['accounting']->main_pool, '#	main_pool')."
 
	#
	#  Log traffic to an SQL database.
	#
	#  See \"Accounting queries\" in sql.conf
".$this->_writeModule($this->_sections['accounting']->sql, 'sql')."
 
	#
	#  Instead of sending the query to the SQL server,
	#  write it into a log file.
	#

session {
".$this->_writeModule($this->_sections['session']->radutmp, '#	radutmp')."
 
	#
	#  See \"Simultaneous Use Checking Queries\" in sql.conf
".$this->_writeModule($this->_sections['session']->sql, '#	sql')."
}
 
 
#  Post-Authentication
#  Once we KNOW that the user has been authenticated, there are

	#  'edir_account_policy_check = yes' in the ldap module configuration
	#
	Post-Auth-Type REJECT {
		attr_filter.access_reject
	}
".$this->_writeModule($this->_sections['post-auth']->files, '#	files')."
}
 
#
#  When the server decides to proxy a request to a home server,
#  the proxied request is first passed through the pre-proxy

Subversion Repositories ALCASAR

(root)/web/acc/admin/lib/alcasar/freeradius/siteconfig.php – Rev 1625 → 1672

Rev 1625		Rev 1672
Line 247...		Line 247...
247	`#`	247	`#`
248	`# Look in an SQL database. The schema of the database`	248	`# Look in an SQL database. The schema of the database`
249	`# is meant to mirror the \"users\" file.`	249	`# is meant to mirror the \"users\" file.`
250	`#`	250	`#`
251	`# See \"Authorization Queries\" in sql.conf`	251	`# See \"Authorization Queries\" in sql.conf`
252	`".$this->_writeModule($this->_sections['authorize']->sql, 'sql')."`	252	`".$this->_writeModule($this->_sections['authorize']->sql, 'sql')."`
253	`".$this->_writeModule($this->_sections['authorize']->noresetcounter, 'noresetcounter')."`	253	`".$this->_writeModule($this->_sections['authorize']->noresetcounter, 'noresetcounter')."`
254	`".$this->_writeModule($this->_sections['authorize']->dailycounter, 'dailycounter')."`	254	`".$this->_writeModule($this->_sections['authorize']->dailycounter, 'dailycounter')."`
255	`".$this->_writeModule($this->_sections['authorize']->monthlycounter, 'monthlycounter')."`	255	`".$this->_writeModule($this->_sections['authorize']->monthlycounter, 'monthlycounter')."`
256	`#`	256	`#`
257	`# If you are using /etc/smbpasswd, and are also doing`	257	`# If you are using /etc/smbpasswd, and are also doing`
258	`# mschap authentication, the un-comment this line, and`	258	`# mschap authentication, the un-comment this line, and`
259	`# configure the 'etc_smbpasswd' module, above.`	259	`# configure the 'etc_smbpasswd' module, above.`
260	`".$this->_writeModule($this->_sections['authorize']->etc_smbpasswd, '# etc_smbpasswd')."`	260	`".$this->_writeModule($this->_sections['authorize']->etc_smbpasswd, '# etc_smbpasswd')."`
261	`#`	261	`#`
262	`# The ldap module will set Auth-Type to LDAP if it has not`	262	`# The ldap module will set Auth-Type to LDAP if it has not`
263	`# already been set`	263	`# already been set`
264	`".$this->_writeModule($this->_sections['authorize']->ldap, '# ldap {`	264	`".$this->_writeModule($this->_sections['authorize']->ldap, '# ldap {`
265	`# fail = 1`	265	`# fail = 1`
266	`# }')."`	266	`# }')."`
267	`#`	267	`#`
268	`# Enforce daily limits on time spent logged in.`	268	`# Enforce daily limits on time spent logged in.`
269	`".$this->_writeModule($this->_sections['authorize']->daily, '# daily')."`	269	`".$this->_writeModule($this->_sections['authorize']->daily, '# daily')."`
270	`#`	270	`#`
271	`# Use the checkval modulel`	271	`# Use the checkval modulel`
Line 427...		Line 427...
427	`# For Simultaneous-Use tracking.`	427	`# For Simultaneous-Use tracking.`
428	`#`	428	`#`
429	`# Due to packet losses in the network, the data here`	429	`# Due to packet losses in the network, the data here`
430	`# may be incorrect. There is little we can do about it.`	430	`# may be incorrect. There is little we can do about it.`
431	`".$this->_writeModule($this->_sections['accounting']->radutmp, '# radutmp')."`	431	`".$this->_writeModule($this->_sections['accounting']->radutmp, '# radutmp')."`
432	`".$this->_writeModule($this->_sections['accounting']->sradutmp, 'sradutmp')."`	432	`".$this->_writeModule($this->_sections['accounting']->sradutmp, '# sradutmp')."`
433		433
434	`# Return an address to the IP Pool when we see a stop record.`	434	`# Return an address to the IP Pool when we see a stop record.`
435	`".$this->_writeModule($this->_sections['accounting']->main_pool, '# main_pool')."`	435	`".$this->_writeModule($this->_sections['accounting']->main_pool, '# main_pool')."`
436		436
437	`#`	437	`#`
438	`# Log traffic to an SQL database.`	438	`# Log traffic to an SQL database.`
439	`#`	439	`#`
440	`# See \"Accounting queries\" in sql.conf`	440	`# See \"Accounting queries\" in sql.conf`
441	`".$this->_writeModule($this->_sections['accounting']->sql, 'sql')."`	441	`".$this->_writeModule($this->_sections['accounting']->sql, 'sql')."`
442		442
443	`#`	443	`#`
444	`# Instead of sending the query to the SQL server,`	444	`# Instead of sending the query to the SQL server,`
445	`# write it into a log file.`	445	`# write it into a log file.`
446	`#`	446	`#`
Line 468...		Line 468...
468	`session {`	468	`session {`
469	`".$this->_writeModule($this->_sections['session']->radutmp, '# radutmp')."`	469	`".$this->_writeModule($this->_sections['session']->radutmp, '# radutmp')."`
470		470
471	`#`	471	`#`
472	`# See \"Simultaneous Use Checking Queries\" in sql.conf`	472	`# See \"Simultaneous Use Checking Queries\" in sql.conf`
473	`".$this->_writeModule($this->_sections['session']->sql, '# sql')."`	473	`".$this->_writeModule($this->_sections['session']->sql, '# sql')."`
474	`}`	474	`}`
475		475
476		476
477	`# Post-Authentication`	477	`# Post-Authentication`
478	`# Once we KNOW that the user has been authenticated, there are`	478	`# Once we KNOW that the user has been authenticated, there are`
Line 516...		Line 516...
516	`# 'edir_account_policy_check = yes' in the ldap module configuration`	516	`# 'edir_account_policy_check = yes' in the ldap module configuration`
517	`#`	517	`#`
518	`Post-Auth-Type REJECT {`	518	`Post-Auth-Type REJECT {`
519	`attr_filter.access_reject`	519	`attr_filter.access_reject`
520	`}`	520	`}`
521	`".$this->_writeModule($this->_sections['post-auth']->files, '# files')."`	521	`".$this->_writeModule($this->_sections['post-auth']->files, '# files')."`
522	`}`	522	`}`
523		523
524	`#`	524	`#`
525	`# When the server decides to proxy a request to a home server,`	525	`# When the server decides to proxy a request to a home server,`
526	`# the proxied request is first passed through the pre-proxy`	526	`# the proxied request is first passed through the pre-proxy`