>> On 2012-06-13 at 21:42 +0100, Jeremy Harris wrote:
>>> accept - OK - true + message
>>> defer - DEFER - forced fail
>>> deny - FAIL - false + message
>>> oops - ERROR - non-forced fail
I've pushed a branch called "acl" with this work.
- the traditional "acl =" ACL condition now accepts arguments,
space-separated, after the ACL name:
acl = my_acl_name arg1 arg2
- a new expansion item ${acl {name}{arg}... }
is added. The result of the expansion is given by
the "message =" modifier in the called acl,
which must accept or deny (not defer).
- a new expansion condition "acl {{name}{arg}... }"
is added. The value of the condition is true if
the called acl returns accept; false for deny. The
content given by "message =" is placed in $value.
In all cases the name and arguments are separately
expanded. Arguments are placed in variables
$acl_arg1 to $acl_arg9; zero to nine arguments are
supported. The actual number for the call is placed
in variable $acl_argn.
--
Jeremy