sql_engine sql_hostnames sql_user
sql_passwd sql_database sql_select
sql_insert sql_update sql_usessl
This option is used by sql plugin.
sql_engine - Name of SQL engine to use
(possible values: mysql, pgsql, sqlite).
sql_hostnames - Comma separated list of SQL servers
(in host[:port] format).
sql_user - Username to use for authentication to the SQL server.
sql_passwd - Password to use for authentication to the SQL server.
sql_database - Name of the database which contains the
auxiliary properties.
sql_select - SELECT statement to use for fetching properties.
This option is required in order to use the SQL plugin.
sql_insert - INSERT statement to use for creating properties
for new users.
sql_update - UPDATE statement to use for modifying properties.
sql_usessl - When set to yes, on, 1 or true, a
secure connection will be made to the SQL server.
The SQL statements provided in the sql_select, sql_insert and
sql_update options can contain arguments which will be substituted
with the appropriate values.
The valid arguments are:
%u - Username whose properties are being fetched/stored.
%p - Name of the property being fetched/stored. This could
technically be anything, but SASL authentication will try userPassword
and cmusaslsecretMECHNAME (where MECHNAME is the name of a SASL mechanism).
%r - Realm to which the user belongs. This could be the kerberos
realm, the FQDN of the computer the SASL application is running on or
whatever is after the @ on a username. (read the realm documentation).
%v - Value of the property being stored (INSERT or UPDATE only!).
This could technically be anything depending on the property itself, but
is generally a userPassword.
NOTE: DO NOT put quotes around the entire SQL statement, but each
individual %u, %r and %v argument MUST be quoted.
The sql_insert and sql_update options are optional and are only needed if you wish to allow the SASL library (e.g., saslpasswd2) and plugins (e.g., OTP) to write properties to the SQL server. If used, both statements MUST be provided so that properties can be added, changed and deleted.