26 Jul
2017
26 Jul
'17
2:55 p.m.
On Jul 26, 2017, at 2:46 PM, Fiorella De Luca via Freeradius-Users <freeradius-users@lists.freeradius.org> wrote:
Regarding checks like bandwidth limits and session time limit, when authorizing through a REST API, I guess we can do these checks in the authorization phase via the REST API too and return an appropiate response accordingly, is this correct?
Yes. The REST back-end can do pretty much anything it wants with the data it gets, and it can return pretty much any data in response. FreeRADIUS can then use that response to set RADIUS attributes.
Example: check the user exists, check password matches, check user has not exhausted their allocated daily bandwidth.
yes. Alan DeKok.