If so, return Access-Reject
}
/*
+ * Do post-auth. If it returns reject, then
+ * run Post-Auth-Type Reject.
+ */
+ if (request->reply->code == PW_AUTHENTICATION_ACK) {
+ if (rad_postauth(request) == RLM_MODULE_REJECT) {
+ request->reply->code = PW_AUTHENTICATION_REJECT;
+ }
+ }
+
+ /*
* Run rejected packets through
*
* Post-Auth-Type = Reject
}
}
- if (request->reply->code == PW_AUTHENTICATION_ACK) {
- rad_postauth(request);
- }
-
/* FALL-THROUGH */
#ifdef WITH_COA