freeradius-proxy with Rlm_cache
Phil Mayers
p.mayers at imperial.ac.uk
Wed Feb 20 13:54:37 CET 2013
On 20/02/13 12:47, Phil Mayers wrote:
> ...and then:
>
> authorize {
Damn, sorry this is not right. The 2nd "update" will squash the return
values.
You'll need:
authorize {
# first, just check the cache, don't
# create entries or set reply attrs
update control {
Cache-Status-Only = yes
}
otpcache
if (ok) {
# entry found in cache; set auth type to accept
# and call cache again to get reply attrs
update control {
Auth-Type := Accept
Cache-Status-Only !* ANY
}
otpcache
ok
}
else {
# future cache lookups here, and in post-auth,
# should be normal ones
update control {
Cache-Status-Only !* ANY
}
}
...
}
More information about the Freeradius-Users
mailing list