summaryrefslogtreecommitdiffstats
path: root/raddb/policy.d/operator-name
blob: 6d042d412546907435f0c5edbdb491d1df775810 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
#
#  The following policies are for the Operator-Name
#  configuration.
#
#  The policies below can be called as just 'operator-name' (not
#  operator-name.authorize etc..)  from the various config sections.
#

#  If you require that the Operator-Name be set
#  for local clients then call the 'operator-name' policy
#  in the authorize section of the virtual-server for your clients in clients.conf

#  To inject an Operator-Name whilst proxying, call the
#  'operator-name' policy in the pre-proxy section of the virtual server
#  No need to call this if you have already enabled this in
#  the authorize section.

#
#  We assume that clients can have the operator-name definition
#  in the client.conf, e.g.
#  client xxxx {
#    ...
#    Operator-Name = 1your.domain
#  }
#  If this parameter is found for a client, then we add
#  an Operator-Name attribute
#
operator-name.authorize {
	if ("%{client:Operator-Name}") {
		update request {
			&Operator-Name = "%{client:Operator-Name}"
		}
	}
}

#
# Before proxing the client add an Operator-Name
# attribute identifying this site if the operator-name is found for this client
#
operator-name.pre-proxy {
	if (("%{request:Packet-Type}" == 'Access-Request') && "%{client:Operator-Name}") {
		update proxy-request {
			&Operator-Name := "%{client:Operator-Name}"
		}
	}
}