On 2009/01/13 02:02 PM Colin Alston wrote:
> - How can I simply combine lookups with other criteria in a server
> condition as above?
> - What is actually allowed in a server_condition in terms of matching
> conditions?
>
>
To answer my own questions, the following works for me
BIG_UGLY_LDAP_AUTH_CHECK = ${lookup ldap { user="${lookup ldapdn \
{user="cn=Manager,o=FOO" pass=foo
ldap:///?dn?sub?(&(accountStatus=active)(mail=${quote_ldap:$1}))} \
}" pass="$2"
ldap:///?mail?sub?(&(accountStatus=active)(mail=${quote_ldap:$1}))}{yes}{no}}
plain:
driver = plaintext
public_name = PLAIN
server_prompts = :
server_advertise_condition = yes
server_condition = ${if
match_ip{$sender_host_address}{172.31.0.0/16}{yes}{BIG_UGLY_LDAP_AUTH_CHECK}}
server_set_id = $2
--
Colin Alston <colin@???>
