case AUTH_RULE_IDENTITY:
DBG2(DBG_CFG, " id = %Y", v.id);
break;
+ case AUTH_RULE_CA_IDENTITY:
+ DBG2(DBG_CFG, " ca_id = %Y", v.id);
+ break;
case AUTH_RULE_AAA_IDENTITY:
DBG2(DBG_CFG, " aaa_id = %Y", v.id);
break;
return parse_id(cfg, AUTH_RULE_IDENTITY, v);
}
+/**
+ * Parse CA identity constraint
+ */
+CALLBACK(parse_ca_id, bool,
+ auth_cfg_t *cfg, chunk_t v)
+{
+ return parse_id(cfg, AUTH_RULE_CA_IDENTITY, v);
+}
+
/**
* Parse AAA identity
*/
parse_rule_t rules[] = {
{ "auth", parse_auth, auth->cfg },
{ "id", parse_ike_id, auth->cfg },
+ { "ca_id", parse_ca_id, auth->cfg },
{ "aaa_id", parse_aaa_id, auth->cfg },
{ "eap_id", parse_eap_id, auth->cfg },
{ "xauth_id", parse_xauth_id, auth->cfg },
case AUTH_RULE_IDENTITY:
b->add_kv(b, "id", "%Y", v.id);
break;
+ case AUTH_RULE_CA_IDENTITY:
+ b->add_kv(b, "ca_id", "%Y", v.id);
+ break;
case AUTH_RULE_AAA_IDENTITY:
b->add_kv(b, "aaa_id", "%Y", v.id);
break;