Upgrade From 1 to 2 - problem with authorize

[Bjørn Mork]

tnt at kalik.net writes:

>> What's the difference?
>>
>> Tbh, I don't even understand the what group queries are.  Documentation
>> seems to be kind of lacking.  Not your fault I know, but I don't want you
>> to
>> think I haven't tried finding this out for myself!
>
> It's not "kind of lacking"! You have overwritten ooriginal dialup.conf and
> replaced 2.x queries with those from 1.x. You have original dialup.conf in
> downloaded source or you can find it on gitweb.

No, he's correct given that he uses *mssql*.  That documentation is
lacking a bit:  The example mssql/dialup.conf is not 2.x compatible.
Note:

bjorn at canardo:/usr/local/src/git/freeradius$ grep -l group_memb raddb/sql/*/dialup.conf
raddb/sql/mysql/dialup.conf
raddb/sql/oracle/dialup.conf
raddb/sql/postgresql/dialup.conf
bjorn at canardo:/usr/local/src/git/freeradius$ ls -l raddb/sql/*/dialup.conf
-rw-r--r-- 2 bjorn src  7867 2008-09-05 15:55 raddb/sql/mssql/dialup.conf
-rw-r--r-- 2 bjorn src 14379 2008-09-05 15:55 raddb/sql/mysql/dialup.conf
-rw-r--r-- 2 bjorn src 12318 2008-09-05 15:55 raddb/sql/oracle/dialup.conf
-rw-r--r-- 2 bjorn src 13975 2008-09-05 15:55 raddb/sql/postgresql/dialup.conf

I guess this is just because no mssql user has taken the time to update
the example yet.


> In 2.x you need to use group_membership query which places groups in
> SQL-Group and uses that in group queries. If no sql groups are returned by
> group_membership query - group queries are not used.

Right.  So my suggestion is that he makes it work by looking at the
mysql or postgresql examples, and then sends a patch for the
mssql/dialup.conf example.



Bjørn