kkalev [Sun, 11 Aug 2002 17:49:16 +0000 (17:49 +0000)]
* Add support for group membership attribute inside the user entry in ldap_groupcmp. The attribute
can either contain the name or the DN of the group. Added the groupmembership_attribute
configuration directive
* Move the ldap_{get,release}_conn in ldap_groupcmp so that we hold a connection for the minimum time.
* Update documentation and radiusd.conf
kkalev [Sun, 11 Aug 2002 09:46:48 +0000 (09:46 +0000)]
Do an xlat on the search and replace strings
kkalev [Sat, 10 Aug 2002 18:52:24 +0000 (18:52 +0000)]
Update Changelog
kkalev [Sat, 10 Aug 2002 18:46:33 +0000 (18:46 +0000)]
The new group page should only be available if the general library type is sql
kkalev [Sat, 10 Aug 2002 16:49:21 +0000 (16:49 +0000)]
* Add support for groups in SQL. Added several new files and modified a few more.
* Default values in SQL are now extracted from the group membership. Added a lib/sql/defaults.php3 file.
As a result the default operator is not '=' anymore but whatever we find in the group check and reply tables.
* In lib/sql/user_info.php3 set user_exists in more than one places.
* Add support for the '=*' and '!*' operators
* Added a HELP_WANTED file describing what are the major things missing which people could contribute.
* Updated TODO
fcusack [Fri, 9 Aug 2002 14:58:15 +0000 (14:58 +0000)]
XSUB.h
aland [Thu, 8 Aug 2002 18:30:04 +0000 (18:30 +0000)]
Don't do "ptr++" when skipping over a tag for string tunnel attributes.
That screws up the count of attrlen and length.
Instead, remember that there's an offset to skip the tag, and
don't play games with ptr.
aland [Tue, 6 Aug 2002 17:33:40 +0000 (17:33 +0000)]
Change '!=' to '==', so Cisco garbage like:
foo-bar-baz = "boo-bar-baz = 5"
Will work.
aland [Tue, 6 Aug 2002 16:50:31 +0000 (16:50 +0000)]
A big sweep of changes to use 'configure' to discover which header
files exist, and when to include them.
This code is *really* bad. It uses inet_aton, and gethostby..,
and has a lot of compiler warnings. Someone should really go
through it, and clean it up.
aland [Tue, 6 Aug 2002 16:11:39 +0000 (16:11 +0000)]
Run autoheader, too, when re-building module configure scripts
aland [Tue, 6 Aug 2002 15:27:21 +0000 (15:27 +0000)]
Added note about Exec-Program, with samples.
aland [Tue, 6 Aug 2002 15:26:27 +0000 (15:26 +0000)]
Added note about 'printenv'
aland [Tue, 6 Aug 2002 15:20:38 +0000 (15:20 +0000)]
Updated so gdbm-ndbm.h isn't found to be the same as gdbm/ndbm.h
Bug found by Eric Reischer
aland [Tue, 6 Aug 2002 15:19:44 +0000 (15:19 +0000)]
Updated quoting so foo-bar.h isn't found to be the same as foo/bar.h
aland [Tue, 6 Aug 2002 14:58:56 +0000 (14:58 +0000)]
Added a debugging message about unknown variables, for people
who can't be bothered reading the documentation.
aland [Fri, 2 Aug 2002 18:48:24 +0000 (18:48 +0000)]
Don't over-write request->reply->vps, add the reply message
when the user is rejected.
Patch from Thomas Jalsovsky
fcusack [Fri, 2 Aug 2002 09:52:55 +0000 (09:52 +0000)]
Don't call mysql_error() if we don't have a connection.
Problem noted by CheongMeng.
aland [Thu, 1 Aug 2002 19:43:10 +0000 (19:43 +0000)]
Added docs for =* and !*
aland [Thu, 1 Aug 2002 15:11:36 +0000 (15:11 +0000)]
Even more excruciatingly descriptive debugging messages.
aland [Wed, 31 Jul 2002 19:17:29 +0000 (19:17 +0000)]
Unless otherwise specified, home servers get 1812/1813 for ports,
instead of 'auth_port' and 'acct_port', which may not be initialized
yet.
This makes a little more sense, as the ports the server listens
on should be unrelated to the ports it sends requests to. It SHOULD
send requests to the RFC standard ports, unless the administrator
explicitely configures otherwise.
aland [Wed, 31 Jul 2002 19:15:55 +0000 (19:15 +0000)]
Added protoypes for pre-proxy, post-proxy, and post-auth
module calling functions.
aland [Wed, 31 Jul 2002 19:14:02 +0000 (19:14 +0000)]
Include code erroneously deleted
aland [Wed, 31 Jul 2002 17:17:29 +0000 (17:17 +0000)]
Forcibly zero-out data structures after allocting them.
aland [Wed, 31 Jul 2002 14:46:23 +0000 (14:46 +0000)]
Updated for the latest changes
aland [Wed, 31 Jul 2002 14:35:45 +0000 (14:35 +0000)]
Changed the name of the file, to be consistent with the other
modules.
aland [Tue, 30 Jul 2002 19:43:46 +0000 (19:43 +0000)]
Return code should be zero for success
Patch from "Yuri Bazhukov" <ybazhukov@ktl.ru>
aland [Tue, 30 Jul 2002 17:06:24 +0000 (17:06 +0000)]
Move unknown xlat warning to a better place
aland [Tue, 30 Jul 2002 15:32:50 +0000 (15:32 +0000)]
More updates to make forking work in debug mode.
aland [Tue, 30 Jul 2002 14:57:16 +0000 (14:57 +0000)]
Added note about 'ulimit -c unlimited'
aland [Tue, 30 Jul 2002 14:41:45 +0000 (14:41 +0000)]
Added sample 'instantiate' section, with comments on how it's used.
aland [Tue, 30 Jul 2002 14:39:06 +0000 (14:39 +0000)]
Added debug message if the user attempts to use an xlat function
which isn't registered.
aland [Tue, 30 Jul 2002 14:33:43 +0000 (14:33 +0000)]
Removed bogus 'authenticate' function, now that the server
has an 'instantiate' ability.
aland [Tue, 30 Jul 2002 14:32:41 +0000 (14:32 +0000)]
Added support for an 'instantiate' section, like authorize, or
authenticate, etc.
This allows the administrator to order the instantiation of the
modules, where that order is important.
It also allows the use of modules with no authorize/authenticate/etc
sections, like the newly-added 'expr'
pam [Tue, 30 Jul 2002 10:55:01 +0000 (10:55 +0000)]
Removed references to driver header files from Makefile.in
aland [Mon, 29 Jul 2002 21:52:47 +0000 (21:52 +0000)]
Preliminary 'expression' module, to allow you to do cool things
like:
Session-Timeout = `%{expr:3600 - %{sql:foo}}`
aland [Mon, 29 Jul 2002 21:00:17 +0000 (21:00 +0000)]
Call the 'escape string' function in the xlat for config sections.
aland [Mon, 29 Jul 2002 20:59:37 +0000 (20:59 +0000)]
The user may not supply radius_xlat() an 'escape string' function.
If so, then radius_xlat() defines one itself, which should be safe.
This allows the registered 'xlat' functions to never check the value
of the 'escape string' function, which should simplify the code.
aland [Mon, 29 Jul 2002 20:48:25 +0000 (20:48 +0000)]
Properly handle nested '{', so %{sql:foo %{bar:stuff}} can work.
aland [Mon, 29 Jul 2002 20:12:44 +0000 (20:12 +0000)]
C++ compatibility patch from Andrey Kotrekhov <kota@at.com.ua>
C++ has restriction that the struct name (class name) in the struct
declaration reserved for constructor.
aland [Mon, 29 Jul 2002 20:11:21 +0000 (20:11 +0000)]
Allow compilation of files from languages other than C to .o
Patch from Andrey Kotrekhov <kota@at.com.ua>
aland [Mon, 29 Jul 2002 20:06:17 +0000 (20:06 +0000)]
Moved the hidden 'README' to the top-level 'doc' directory
aland [Mon, 29 Jul 2002 18:09:38 +0000 (18:09 +0000)]
don't call rad_pwencode() any more.
aland [Mon, 29 Jul 2002 18:08:38 +0000 (18:08 +0000)]
raddb/dictionary add encrypt flag for User-Password
raddb/dictionary.ascend NOT DONE: add 'encrypt=3' flag
src/include/radius.h define PW_USER_PASSWORD, too
src/include/libradius.h define names for encryption flags
src/lib/radius.c use 'switch' over encryption flags,
to decrypt/encrypt passwords.
automatically decrypt/encrypt User-Password,
so the caller doesn't have to do the work
any more.
src/main/proxy.c don't call rad_pwencode() any more.
src/main/auth.c don't call rad_pwencode() any more.
aland [Mon, 29 Jul 2002 16:18:17 +0000 (16:18 +0000)]
cleaned up some memory leaks and other issues.
De-register the 'xlat' function on exit.
aland [Mon, 29 Jul 2002 14:59:08 +0000 (14:59 +0000)]
Removed unnecessary header files, as all they did was cause
maintenance problems.
All of the functions in the SQL sub-modules are ONLY exported
through the rlm_sql_module_t data structure. This means that
they can be made 'static', which is the preferred method of
declaring internal functions that no one else knows about,
or uses.
aland [Mon, 29 Jul 2002 14:27:35 +0000 (14:27 +0000)]
Commit what wasn't committed a few days ago.
aland [Fri, 26 Jul 2002 18:50:11 +0000 (18:50 +0000)]
Added mppe_keys.c file, and eaptls_gen_mppe_keys() function,
to generate MS-MPPE-{Send,Recv}-Key attributes.
Patch from Lars Viklund <lars.viklund@axis.com>, as posted to
freeradius-users@lists.cistron.nl, Thu, 20 Jun 2002
aland [Fri, 26 Jul 2002 18:36:28 +0000 (18:36 +0000)]
Last set of updates.
aland [Fri, 26 Jul 2002 18:34:01 +0000 (18:34 +0000)]
Now that 0.7 is out, the current release is 0.8-pre
aland [Fri, 26 Jul 2002 18:32:59 +0000 (18:32 +0000)]
Noted release method, as documentation for anything is always nice.
aland [Fri, 26 Jul 2002 18:05:05 +0000 (18:05 +0000)]
Remove $ from date, to keep it constant for release.
aland [Fri, 26 Jul 2002 18:02:46 +0000 (18:02 +0000)]
Renamed 0.7-pre to 0.7, in preparation for the release.
aland [Fri, 26 Jul 2002 18:01:50 +0000 (18:01 +0000)]
Once last updated, before 0.7 is released
3APA3A [Fri, 26 Jul 2002 17:04:59 +0000 (17:04 +0000)]
! locking functions are changed to do fcntl if neither lockf nor flock found
aland [Fri, 26 Jul 2002 14:43:21 +0000 (14:43 +0000)]
Allow PW_TYPE_DATE attributes to be sent in outgoing RADIUS packets.
Bug found by Loh John Wu <ljwu@sandvine.com>
aland [Thu, 25 Jul 2002 17:41:54 +0000 (17:41 +0000)]
Create the 'bin' directory before putting programs there.
aland [Thu, 25 Jul 2002 15:56:39 +0000 (15:56 +0000)]
Removed newer autoconf macro
re-built 'configure' with the same version of autoconf as the
rest of the software, to make things consistent.
Problem noted by Andrey Kotrekhov
aland [Thu, 25 Jul 2002 15:54:23 +0000 (15:54 +0000)]
When doing sql_xlat, don't release the socket until we've
finished doing all of our work with it.
Bug noted by dendy@clamas.udsu.ru
aland [Wed, 24 Jul 2002 18:27:37 +0000 (18:27 +0000)]
Corrected typo
Patch from Chris A. Kalin
aland [Wed, 24 Jul 2002 17:07:15 +0000 (17:07 +0000)]
RLM_INSTALL is a make file target, not a program.
aland [Wed, 24 Jul 2002 16:46:38 +0000 (16:46 +0000)]
Added note on where to find xsupplicant
aland [Wed, 24 Jul 2002 16:21:04 +0000 (16:21 +0000)]
Added notes pre-0.7
aland [Wed, 24 Jul 2002 14:35:18 +0000 (14:35 +0000)]
Use encrypted passwords, if available.
aland [Wed, 24 Jul 2002 14:28:21 +0000 (14:28 +0000)]
Removed old configure checks for smbclient, as we now include
all of the necessary code in this module.
Fixed the make file to include the other C files...
fcusack [Wed, 24 Jul 2002 09:32:00 +0000 (09:32 +0000)]
call sql_check_error() correctly. Patch from Denis Tatarskikh.
ramoore [Mon, 22 Jul 2002 23:10:05 +0000 (23:10 +0000)]
Add vp_listdebug function that prints a list of value pairs to the DEBUG
function. Used this in rlm_sql.c.
ramoore [Mon, 22 Jul 2002 23:07:08 +0000 (23:07 +0000)]
Small correction to the way sqlcounter calculates the beginning and
ending dates when multiple periods are used (ie 3 months). This probably
still doesn't do what most people would want.
ramoore [Mon, 22 Jul 2002 15:42:47 +0000 (15:42 +0000)]
Minor fix to sql.conf. Change %{NAS-Port-Id} to %{NAS-Port} so that NAS Ports
are actually recorded
aland [Mon, 22 Jul 2002 14:02:19 +0000 (14:02 +0000)]
Added Alcatel dictionary, from Lasse Johnsen, Bulldog Communications
fcusack [Sat, 20 Jul 2002 03:39:55 +0000 (03:39 +0000)]
Add PAM-isms
fcusack [Fri, 19 Jul 2002 23:27:44 +0000 (23:27 +0000)]
allow softfail to be optional
aland [Fri, 19 Jul 2002 19:30:41 +0000 (19:30 +0000)]
Updated for Solaris garbage, where 'pthread_create' is a symbol
in libc, but it resolves to a function which does nothing.
What the hell kind of crack are those people on, anyways?
aland [Fri, 19 Jul 2002 14:34:06 +0000 (14:34 +0000)]
Call ip_hostname, to get host names, if the user wants them.
Bug noted by Martin Shears
aland [Fri, 19 Jul 2002 14:18:46 +0000 (14:18 +0000)]
Added note about '.db' at the end of dbm filenames
aland [Thu, 18 Jul 2002 17:52:46 +0000 (17:52 +0000)]
Updated for latest set of changes.
aland [Thu, 18 Jul 2002 17:48:02 +0000 (17:48 +0000)]
Add rlm_smb module, to do authentication against NT domains
Most of the code is stolen directly from version 1.1.6 of pam_smb,
from http://www.csn.ul.ie/~airlied/pam_smb/
It's GPL'd, so that's OK. :)
Now people without PAM can do SMB authentication.
cparker [Thu, 18 Jul 2002 17:09:18 +0000 (17:09 +0000)]
Ensure that 'Realm' is added to vps in all cases when we find
a matching realm ( even if we handle it locally ). Bug noted
by Chris Brotsos.
aland [Thu, 18 Jul 2002 15:09:16 +0000 (15:09 +0000)]
Updated with pointers to other schemas
Updated with URL for MySQL "best practices" document
aland [Thu, 18 Jul 2002 14:59:51 +0000 (14:59 +0000)]
Corrected typo: "libtdl" != "libltdl"
aland [Thu, 18 Jul 2002 14:50:18 +0000 (14:50 +0000)]
Updated note that the ports are 1812 and 1813, not 1645 and 1646
pam [Thu, 18 Jul 2002 08:22:30 +0000 (08:22 +0000)]
LDAP_USERDN -> PW_LDAP_USERDN, remove unused PW_AUTHTYPE_PAM
pam [Thu, 18 Jul 2002 08:21:20 +0000 (08:21 +0000)]
LDAP_USERDN -> PW_LDAP_USERDN
3APA3A [Thu, 18 Jul 2002 08:18:04 +0000 (08:18 +0000)]
! minor corrections
fcusack [Thu, 18 Jul 2002 06:05:21 +0000 (06:05 +0000)]
use X99_LOG_CRIT when out of memory
aland [Wed, 17 Jul 2002 18:37:07 +0000 (18:37 +0000)]
added 'xlat' function.
aland [Wed, 17 Jul 2002 18:29:13 +0000 (18:29 +0000)]
Fix typos, speling mistakes, and grammer. :)
aland [Wed, 17 Jul 2002 18:20:56 +0000 (18:20 +0000)]
Slight change to the debugging message when no Auth-Type was found.
aland [Wed, 17 Jul 2002 17:46:09 +0000 (17:46 +0000)]
Added documentation on digest module.
aland [Wed, 17 Jul 2002 17:39:48 +0000 (17:39 +0000)]
Added empty config for digest module.
aland [Wed, 17 Jul 2002 17:37:28 +0000 (17:37 +0000)]
Updated copyright
3APA3A [Wed, 17 Jul 2002 17:26:36 +0000 (17:26 +0000)]
*** empty log message ***
3APA3A [Wed, 17 Jul 2002 17:23:52 +0000 (17:23 +0000)]
*** empty log message ***
3APA3A [Wed, 17 Jul 2002 17:16:58 +0000 (17:16 +0000)]
*** empty log message ***
3APA3A [Wed, 17 Jul 2002 17:13:27 +0000 (17:13 +0000)]
+ added rlm_passwd documentation
+ added few Q&As to rlm_mschap
3APA3A [Wed, 17 Jul 2002 16:07:51 +0000 (16:07 +0000)]
! information related to rlm_passwd updated
3APA3A [Wed, 17 Jul 2002 15:52:15 +0000 (15:52 +0000)]
+ support for 'delimiter' configuration option
aland [Wed, 17 Jul 2002 15:27:06 +0000 (15:27 +0000)]
Minor english/typo changes
3APA3A [Wed, 17 Jul 2002 14:45:03 +0000 (14:45 +0000)]
! cosmetic changes
3APA3A [Wed, 17 Jul 2002 14:38:58 +0000 (14:38 +0000)]
rlm_mschap documentation added
aland [Wed, 17 Jul 2002 14:25:24 +0000 (14:25 +0000)]
Added more simple text to help people get the server up and running.