summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
-rw-r--r--radsecproxy.c33
1 files changed, 33 insertions, 0 deletions
diff --git a/radsecproxy.c b/radsecproxy.c
index 6e29fd0..05a3e82 100644
--- a/radsecproxy.c
+++ b/radsecproxy.c
@@ -1249,6 +1249,36 @@ int msmppe(unsigned char *attrs, int length, uint8_t type, char *attrtxt, struct
return 1;
}
+void rewriteattr(struct clsrvconf *conf, char *in) {
+ size_t nmatch = 10, reslen = 0, start = 0;
+ regmatch_t pmatch[10], *pfield;
+ int i;
+ char result[1024];
+ char *out = conf->rewriteattrreplacement;
+
+ if (regexec(conf->rewriteattrregex, in, nmatch, pmatch, 0)) {
+ debug(DBG_DBG, "rewriteattr: username not matching, no rewrite");
+ return;
+ }
+
+ for (i = start; out[i]; i++) {
+ if (out[i] == '\\' && out[i + 1] >= '1' && out[i + 1] <= '9') {
+ pfield = &pmatch[out[i + 1] - '0'];
+ if (pfield->rm_so >= 0) {
+ memcpy(result + reslen, out + start, i - start);
+ reslen += i - start;
+ memcpy(result + reslen, in + pfield->rm_so, pfield->rm_eo - pfield->rm_so);
+ reslen += pfield->rm_eo - pfield->rm_so;
+ start = i + 2;
+ }
+ i++;
+ }
+ }
+
+ memcpy(result + reslen, out + start, i + 1 - start);
+ debug(DBG_DBG, "rewriteattr: username matching, would have rewritten to %s", result);
+}
+
void acclog(unsigned char *attrs, int length, char *host) {
unsigned char *attr;
char username[256];
@@ -1380,6 +1410,9 @@ void radsrv(struct request *rq) {
username[ATTRVALLEN(attr)] = '\0';
debug(DBG_DBG, "Access Request with username: %s", username);
+ if (rq->from->conf->rewriteattrregex)
+ rewriteattr(rq->from->conf, username);
+
realm = id2realm(username, strlen(username));
if (!realm) {
debug(DBG_INFO, "radsrv: ignoring request, don't know where to send it");