Hello all, How am I able to read the value of the User-Password attribute and
pass it to a variable from an (AuthBy) EXTERNAL BASH script? Also, how am I
able to send back the result to the user either successful (Access-Accept) or
failed (Access-Reject)? Below is a snippet of my Radiator configuration: - - -
< s n i p > - - -<Realm DEFAULT>
<AuthBy EXTERNAL>
DecryptPassword
Command /usr/local/sbin/testauth.sh
Fork
RejectEmptyPassword
</AuthBy> AcctLogFileName %L/accounting/detail-%Y%m%d.log
</Realm>- - - < s n i p > - - - Below is my BASH script: - - - < s n i p > - -
-#!/bin/bashUSERNAME=$(grep -i User-Name | awk -F'61|@' '{print $2}')
PASSWORD=$(grep -i User-Password | awk -F'= ' '{print $2}')
HOST=192.168.1.101
HTTP_PORT=80
URL="http://$HOST/credentials.php?command=password_retrieve&phonenumber=$USERNAME";
RETVAL=0set -xfunction die()
{
echo -e "$@" >> /var/log/messages
exit 1
}if echo "" | telnet $HOST $HTTP_PORT 2>&1 | grep -i Connected ; then if [
$PASSWORD == $(wget -c -O - $URL | cut -d\| -f 1) ] ; then
# Make an Access-Accept reply to the user.
else
# Make an Access-Reject reply to the user.
fielse
die "ERROR: The $HOST is down or unreachable on $(date)."
fiexit ${RETVAL}- - - < s n i p > - - - Lastly, I am getting the below line in
my radiusd.log file: Tue Jun 28 13:53:01 2011 476732: ERR: Bad attribute=value
pair: Connected to 192.168.1.201. Please advice. Thank you in advance. Regards,
MP From: [email protected]
To: [email protected]
Date: Wed, 22 Jun 2011 13:50:30 +0800
Subject: Re: [RADIATOR] Executing an external script from Radiator
Hello all,
Thank you for all who responded to my e-mail.
Now, I have a problem though. First, I am just going to write the script in
BASH as I don't know Perl. Second, there is no database here to verify the
User-Name and User-Password. Everytime there is an Access-Request that is
received by the Radiator, it should execute the BASH script to (maybe) wget or
curl with an input parameter of the User-Name from an HTTP or HTTPS URL and
will receive the output with the User-Name and User-Password to verify and then
reply back with an Access-Accept. If during the wget or curl from the URL and
the output is other than what I expect (the User-Name and User-Password), then
Radiator should respond with an Access-Reject.
[NAS Client] <---> (RADIUS TRaffic) <---> [Radiator] <---> (Execute Script)
<---> (HTTP/HTTPS Traffic) <---> [HTTP Server]
Please ad
vice. Thank you in advance.
From: [email protected]
To: [email protected]
Date: Tue, 21 Jun 2011 14:34:37 +0800
Subject: [RADIATOR] Executing an external script from Radiator
Hello all,
How am I going to execute an external script when Radiator receives an
Access-Request? This script will actually do an HTTP API request from an
external HTTP server to get the userid then once the script have it on the same
server as where the Radiator is running, Radiator will now respond an
Access-Accept.
Please advice. Thank you in advance.
_______________________________________________
radiator mailing list
[email protected]
http://www.open.com.au/mailman/listinfo/radiator
_______________________________________________
radiator mailing list
[email protected]
http://www.open.com.au/mailman/listinfo/radiator
_______________________________________________
radiator mailing list
[email protected]
http://www.open.com.au/mailman/listinfo/radiator
