diff options
| author | Linus Nordberg <linus@nordberg.se> | 2010-05-26 09:10:09 +0200 |
|---|---|---|
| committer | Linus Nordberg <linus@nordberg.se> | 2010-05-26 09:10:09 +0200 |
| commit | 6d341e9bf02f6a3ca7472c2acfea29e1ae154323 (patch) | |
| tree | 25fa1e36ef434ba681451a58ed5a6bdddc41c76a /radsecproxy.conf.5.xml | |
| parent | e0d298a1e52eb6458e121d7b2138512c655b93da (diff) | |
* radsecproxy.conf.5.xml: Add addVendorAttribute.
Diffstat (limited to 'radsecproxy.conf.5.xml')
| -rw-r--r-- | radsecproxy.conf.5.xml | 24 |
1 files changed, 19 insertions, 5 deletions
diff --git a/radsecproxy.conf.5.xml b/radsecproxy.conf.5.xml index a8db618..c3ff612 100644 --- a/radsecproxy.conf.5.xml +++ b/radsecproxy.conf.5.xml @@ -279,6 +279,8 @@ This can be set to <literal>on</literal> or <literal>off</literal> with will never be sent to a server named the same as the client it was received from. I.e., the names of the client block and the server block are compared. Note that this only gives limited protection against loops. +It can be used as a basic option and inside server blocks where it overrides +the basic setting. </para> </listitem> </varlistentry> @@ -471,7 +473,8 @@ The allowed options in a server block are <literal>host</literal>, <literal>rewrite</literal>, <literal>rewriteIn</literal>, <literal>rewriteOut</literal>, <literal>statusServer</literal>, <literal>retryCount</literal>, -<literal>retryInterval</literal> and <literal>dynamicLookupCommand</literal>. +<literal>retryInterval</literal>, <literal>dynamicLookupCommand</literal> +and <literal>loopPrevention</literal>. </para> <para> We already discussed the <literal>host</literal> option. The @@ -506,6 +509,11 @@ The option <literal>dynamicLookupCommand</literal> can be used to specify a command that should be executed to dynamically configure and use a server. The use of this feature will be documented separately/later. </para> + <para> +Using the <literal>loopPrevention</literal> option here overrides any +basic setting of this option. See section <literal>BASIC +OPTIONS</literal> for details on this option. + </para> </refsect1> <refsect1> <title>Realm Block</title> @@ -682,15 +690,21 @@ rewrite on input. No rewriting is done on output unless explicitly specifed using the <literal>rewriteOut</literal> option. </para> <para> -The available rewrite block options are <literal>addAttribute</literal>, +The available rewrite block options +are <literal>addAttribute</literal>, <literal>addVendorAttribute</literal>, <literal>removeAttribute</literal>, <literal>removeVendorAttribute</literal> and <literal>modifyAttribute</literal>. They can all be specified none, one or multiple times. </para> <para> -<literal>addAttribute</literal> is used to add attributes to a message. The -option value must be on the form <literal>attribute:value</literal> where -attribute is a numerical value specifying the attribute. +<literal>addAttribute</literal> is used to add attributes to a +message. The option value must be on the +form <literal>attribute:value</literal> where attribute is a numerical +value specifying the attribute. Simliarly, +the <literal>addVendorAttribute</literal> is used to specify a vendor +attribute to be added. The option value must be on the +form <literal>vendor:subattribute:value</literal>, where vendor and +subattribute are numerical values. </para> <para> The <literal>removeAttribute</literal> option is used to specify an |