2 # Response caching to handle proxy failovers
8 # Expire previous cache entry
30 # Populate cache with responses from the EAP module
46 # Forbid all EAP types. Enable this by putting "forbid_eap"
47 # into the "authorize" section.
56 # Forbid all non-EAP types outside of an EAP tunnel.
60 # We MAY be inside of a TTLS tunnel.
61 # PEAP and EAP-FAST require EAP inside of
62 # the tunnel, so this check is OK.
63 # If so, then there MUST be an outer EAP message.
64 if (!"%{outer.request:EAP-Message}") {
71 # Remove Reply-Message from response if were doing EAP
73 # Be RFC 3579 2.6.5 compliant - EAP-Message and Reply-Message should
74 # not be present in the same response.
76 remove_reply_message_if_eap {
77 if(reply:EAP-Message && reply:Reply-Message) {