Fwd: rlm-perl lc usernames
tnt at kalik.net
tnt at kalik.net
Fri Sep 19 22:16:07 CEST 2008
Print out the username after it was altered. You have an example of
writing to radlog in example.pl:
http://wiki.freeradius.org/Rlm_perl
Than you will know it was(n't) perl.
Ivan Kalik
Kalik Informatika ISP
Dana 19/9/2008, "Charlie B" <cbwonderboy at gmail.com> piše:
>Nobody :( have any tidbits to help me isolate this, obviously its not the
>perl script but what is altering the username.
>
>Thanks
>
>---------- Forwarded message ----------
>From: Charlie B <cbwonderboy at gmail.com>
>Date: Thu, Sep 18, 2008 at 10:52 AM
>Subject: rlm-perl lc usernames
>To: freeradius-users at lists.freeradius.org
>
>
>Hello,
>
>Anyone can help me with this perl script (at bottom) which seem to be
>causing more than a simple lc, it seems to move the first character to the
>end...
>
>
>rlm_perl: Added pair User-Name = *****\\raduser
>rlm_perl: Added pair EAP-Message = 0x02020011014e494e545c52616455736572
>rlm_perl: Added pair NAS-IP-Address = 10.0.1.9
>rlm_perl: Added pair NAS-Port = 50117
>rlm_perl: Added pair Framed-MTU = 1500
>perl_pool total/active/spare [32/0/32]
>Unreserve perl at address 0x2471050
>++[perl] returns ok
>++[chap] returns noop
>++[mschap] returns noop
> rlm_realm: No '@' in User-Name = "****\ aduserr", looking up realm NULL
> rlm_realm: No such realm "NULL"
>++[suffix] returns noop
> rlm_eap: EAP packet type response id 2 length 17
> rlm_eap: No EAP Start, assuming it's an on-going EAP conversation
>++[eap] returns updated
>rlm_ldap: Entering ldap_groupcmp()
> expand: dc=ads,dc=nint,dc=org -> dc=ads,dc=nint,dc=org
> expand: (sAMAccountname=%{mschap:User-Name:-%{User-Name}}) ->
>(sAMAccountname= aduserr)
>rlm_ldap: ldap_get_conn: Checking Id: 0
>rlm_ldap: ldap_get_conn: Got Id: 0
>rlm_ldap: attempting LDAP reconnection
>rlm_ldap: (re)connect to cnsad.ads.nint.org:3268, authentication 0
>rlm_ldap: bind as bckup at ads.nint.org/3MFmqw_6f to cnsad.ads.nint.org:3268
>rlm_ldap: waiting for bind result ...
>rlm_ldap: Bind was successful
>rlm_ldap: performing search in dc=ads,dc=nint,dc=org, with filter
>(sAMAccountname= aduserr)
>
>
>
>perl-tolower.pl (found on forum)
>use strict;
>use vars qw(%RAD_REQUEST %RAD_REPLY %RAD_CHECK);
>#
># This the remapping of return values
>#
>
>use constant RLM_MODULE_REJECT=> 0;# /* immediately reject the request */
>use constant RLM_MODULE_FAIL=> 1;# /* module failed, don't reply */
>use constant RLM_MODULE_OK=> 2;# /* the module is OK, continue */
>use constant RLM_MODULE_HANDLED=> 3;# /* the module handled the request, so
>stop. */
>use constant RLM_MODULE_INVALID=> 4;# /* the module considers therequest
>invalid. */
>use constant RLM_MODULE_USERLOCK=> 5;# /* reject the request (useris locked
>out) */
>use constant RLM_MODULE_NOTFOUND=> 6;# /* user not found */
>use constant RLM_MODULE_NOOP=> 7;# /* module succeeded withoutdoing anything
>*/
>use constant RLM_MODULE_UPDATED=> 8;# /* OK (pairs modified) */
>use constant RLM_MODULE_NUMCODES=> 9;# /* How many return codes there are */
>
>sub authorize {
> $RAD_REQUEST{'User-Name'} = lc($RAD_REQUEST{'User-Name'});
> return RLM_MODULE_OK;
>}
>
>sub preacct {
> $RAD_REQUEST{'User-Name'} = lc($RAD_REQUEST{'User-Name'});
> return RLM_MODULE_OK;
>}
>
>
>Thanks
>
>
More information about the Freeradius-Users
mailing list