From: Alan T. DeKok <aland@freeradius.org>
Date: Tue, 26 Dec 2023 15:36:30 +0000 (-0500)
Subject: don't use Tmp-* in examples
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=2b8984445f9f1f9b820cd4c9bccca771561b70b2;p=thirdparty%2Ffreeradius-server.git

don't use Tmp-* in examples
---

diff --git a/doc/antora/modules/raddb/pages/sites-available/ldap_sync.adoc b/doc/antora/modules/raddb/pages/sites-available/ldap_sync.adoc
index 80dd5f2f237..84d3e330fc5 100644
--- a/doc/antora/modules/raddb/pages/sites-available/ldap_sync.adoc
+++ b/doc/antora/modules/raddb/pages/sites-available/ldap_sync.adoc
@@ -100,6 +100,11 @@ See /etc/raddb/mods-available/ldap for more detailed descriptions of
 configuration items.
 
 
+
+Local attributes which are used to cache results from LDAP
+
+
+
 The LDAP server to connect to.
 
 May be prefixed with:
@@ -425,6 +430,11 @@ The return code of this section is ignored (for now).
 ```
 server ldap_sync {
 	namespace = ldap_sync
+	dictionary {
+		string	member
+		uint64	user-acct-control
+		string	last-known-parent
+	}
 	listen  {
 		transport = ldap
 		ldap {
@@ -464,7 +474,7 @@ server ldap_sync {
 #			filter = "(objectClass=groupOfNames)"
 #			scope = "sub"
 #			update {
-#				&Tmp-String-0 += "member"
+#				&member += "member"
 #			}
 #		}
 #		sync {
@@ -473,7 +483,7 @@ server ldap_sync {
 #			scope = 'sub'
 #			update {
 #				&Proto.radius.User-Name = 'sAMAccountName'
-#				&Tmp-Integer-0 = 'userAccountControl'
+#				&user-acct-control = 'userAccountControl'
 #			}
 #		}
 #		sync {
@@ -482,8 +492,8 @@ server ldap_sync {
 #			scope = "one"
 #			update {
 #				&Proto.radius.User-Name = 'sAMAccountName'
-#				&Tmp-Integer-0 = 'userAccountControl'
-#				&Tmp-String-0 = 'lastKnownParent'
+#				&user-acct-control = 'userAccountControl'
+#				&last-known-parent = 'lastKnownParent'
 #			}
 #		}
 	}
diff --git a/raddb/sites-available/ldap_sync b/raddb/sites-available/ldap_sync
index 367db4ff4c8..16dc7f27a8a 100644
--- a/raddb/sites-available/ldap_sync
+++ b/raddb/sites-available/ldap_sync
@@ -103,6 +103,16 @@
 #
 server ldap_sync {
 	namespace = ldap_sync
+
+	#
+	#  Local attributes which are used to cache results from LDAP
+	#
+	dictionary {
+		string	member
+		uint64	user-acct-control
+		string	last-known-parent
+	}
+
 	listen  {
 		transport = ldap
 
@@ -242,7 +252,7 @@ server ldap_sync {
 			#  FreeRADIUS attributes.
 			#
 #			update {
-#				&Tmp-String-0 += "member"
+#				&member += "member"
 #			}
 #		}
 
@@ -294,7 +304,7 @@ server ldap_sync {
 #
 #			update {
 #				&Proto.radius.User-Name = 'sAMAccountName'
-#				&Tmp-Integer-0 = 'userAccountControl'
+#				&user-acct-control = 'userAccountControl'
 #			}
 #		}
 
@@ -316,8 +326,8 @@ server ldap_sync {
 #
 #			update {
 #				&Proto.radius.User-Name = 'sAMAccountName'
-#				&Tmp-Integer-0 = 'userAccountControl'
-#				&Tmp-String-0 = 'lastKnownParent'
+#				&user-acct-control = 'userAccountControl'
+#				&last-known-parent = 'lastKnownParent'
 #			}
 #		}
 	}