Example Moonshot Policies

Sam Hartman hartmans at mit.edu
Wed Jul 23 19:05:47 CEST 2014

>>>>> "Arran" == Arran Cudbard-Bell <a.cudbardb at freeradius.org> writes:

    >> Should we contribute a sample database module to demonstrate the
    >> database we're using Or would you rather us put that in the trust
    >> router package?

    Arran> Feel free. It should go in mods-config/sql/<db
    Arran> flavour>/moonshot or whatever the framework/protocol will be
    Arran> eventually known as.

So, that doesn't seem to make sense with the current layout.  We don't
have a queries.conf and the schema lives in the trust router package.
What we have is a database module definition for a sqlite (currently all
the trust router supports) database.  We access this with xlats from two
places.  First, from the psk_query section in a tls listener.  Secondly,
from a policy in authorize to reject the request very early if
constraints aren't matched.

i'll contribute a mods-available entry, but if you want to create
something for this under mods-config feel free.  It just doesn't seem to
fit under there today.

More information about the Freeradius-Devel mailing list