package Rader;
#---AUTOPRAGMASTART---
use 5.012;
use strict;
use warnings;
use diagnostics;
use mro 'c3';
use English qw( -no_match_vars );
use Carp;
our $VERSION = 0.996;
#---AUTOPRAGMAEND---

use base qw(Net::Server::Single);

use RADIUS::Dictionary;
use RADIUS::Packet;
use OATHusers;

sub process_request {
    my $self = shift;
    my $prop = $self->{'server'};
    
    # This is a VERY simple RADIUS authentication server which responds
    # to Access-Request packets with Access-Accept/Access-reject.
    
    my $secret = "mysecret";  # Shared secret on the term server
    
    # Parse the RADIUS dictionary file (must have dictionary in current dir)
    my $dict = new RADIUS::Dictionary "dictionary"
      or die "Couldn't read dictionary: $!";
    
    my $um = OATHusers->new();
    
    # Get the data
    my $rec = $prop->{udp_data};
    # Unpack it
    my $p = RADIUS::Packet->new($dict, $rec);
    if ($p->code eq 'Access-Request') {
      # Print some details about the incoming request (try ->dump here)
      #print $p->attr('User-Name'), " logging in with password ",
      #      $p->password($secret), "\n";
      #$p->dump;
      

      
      # Create a response packet
      my $rp = new RADIUS::Packet $dict;
      
      if($um->validate($p->attr('User-Name'), $p->password($secret))) {
        $rp->set_code('Access-Accept');
        print "Password OK\n";
      } else {
        $rp->set_code('Access-Reject');
        print "Password FAIL\n";
      }
      $rp->set_identifier($p->identifier);
      $rp->set_authenticator($p->authenticator);
      # (No attributes are needed.. but you could set IP addr, etc. here)
      # Authenticate with the secret and send to the client.
      my $outpacket = auth_resp($rp->pack, $secret);
      $prop->{'client'}->send($outpacket, 0);
      #$s->sendto(auth_resp($rp->pack, $secret), $whence);
    }
    else {
      # It's not an Access-Request
      print "***** Unexpected packet type recieved. ******";
      $p->dump;
    }
}

1;