3 * Copyright 1998-2007 The OpenLDAP Foundation.
6 * Redistribution and use in source and binary forms, with or without
7 * modification, are permitted only as authorized by the OpenLDAP
10 * A copy of this license is available in the file LICENSE in the
11 * top-level directory of the distribution or, alternatively, at
12 * <http://www.OpenLDAP.org/license.html>.
18 #include <lber_pvt.h> /* BER_BVC definition */
20 #include <ac/string.h>
21 #include <ac/unistd.h>
25 static LUTIL_PASSWD_CHK_FUNC chk_radius;
26 static const struct berval scheme = BER_BVC("{RADIUS}");
27 static char *config_filename;
31 const struct berval *sc,
32 const struct berval *passwd,
33 const struct berval *cred,
37 int rc = LUTIL_PASSWD_ERR;
39 struct rad_handle *h = NULL;
41 for ( i = 0; i < cred->bv_len; i++ ) {
42 if ( cred->bv_val[ i ] == '\0' ) {
43 return LUTIL_PASSWD_ERR; /* NUL character in cred */
47 if ( cred->bv_val[ i ] != '\0' ) {
48 return LUTIL_PASSWD_ERR; /* cred must behave like a string */
51 for ( i = 0; i < passwd->bv_len; i++ ) {
52 if ( passwd->bv_val[ i ] == '\0' ) {
53 return LUTIL_PASSWD_ERR; /* NUL character in password */
57 if ( passwd->bv_val[ i ] != '\0' ) {
58 return LUTIL_PASSWD_ERR; /* passwd must behave like a string */
63 return LUTIL_PASSWD_ERR;
66 if ( rad_config( h, config_filename ) != 0 ) {
70 if ( rad_create_request( h, RAD_ACCESS_REQUEST ) ) {
74 if ( rad_put_string( h, RAD_USER_NAME, passwd->bv_val ) != 0 ) {
78 if ( rad_put_string( h, RAD_USER_PASSWORD, cred->bv_val ) != 0 ) {
82 if ( rad_send_request( h ) == RAD_ACCESS_ACCEPT ) {
93 init_module( int argc, char *argv[] )
97 for ( i = 0; i < argc; i++ ) {
98 if ( strncasecmp( argv[ i ], "config=", STRLENOF( "config=" ) ) == 0 ) {
99 /* FIXME: what if multiple loads of same module?
100 * does it make sense (e.g. override an existing one)? */
101 if ( config_filename == NULL ) {
102 config_filename = ber_strdup( &argv[ i ][ STRLENOF( "config=" ) ] );
106 fprintf( stderr, "init_module(radius): unknown arg#%d=\"%s\".\n",
112 return lutil_passwd_add( (struct berval *)&scheme, chk_radius, NULL );