# -*- text -*-
#
#  $Id$

# passwd module allows to do authorization via any passwd-like
# file and to extract any attributes from these files.
#
#  See the "smbpasswd" and "etc_group" files for more examples.
#
# parameters are:
#   filename - path to filename
#
#   format - format for filename record. This parameters
#            correlates record in the passwd file and RADIUS
#            attributes.
#
#            Field marked as '*' is a key field. That is, the parameter
#            with this name from the request is used to search for
#            the record from passwd file
#
#            Attributes marked as '=' are added to reply_items instead
#            of default configure_itmes
#
#	     Attributse marked as '~' are added to request_items
#
#            Field marked as ',' may contain a comma separated list
#            of attributes.
#
#   hashsize - hashtable size. If 0 or not specified records are not
#            stored in memory and file is read on every request.
#	     This configuration is *not* recommended, as it can be
#	     very slow.  The "passwd" module reloads its configuration
#	     on HUP, so setting "hashsize = 0" is unnecessary.
#
#   allowmultiplekeys - if many records for a key are allowed
#
#   ignorenislike - ignore NIS-related records
#
#   delimiter - symbol to use as a field separator in passwd file,
#            for format ':' symbol is always used. '\0', '\n' are
#	     not allowed 
#

#  An example configuration for using /etc/passwd.
#
#  We do NOT recommend using the configuration below.  See the "unix"
#  module, or the "pam" module for a cleaner way to get system passwords.
#  Using this configuration means that the server will find *only* those
#  passwords which are in /etc/passwd, and will *ignore* all of the
#  passwords in NIS, LDAP, etc.
#
passwd etc_passwd {
	filename = /etc/passwd
	format = "*User-Name:Crypt-Password:"
	hashsize = 100
	ignorenislike = no
	allowmultiplekeys = no
}