I have been looking into methods for LDAP authentication
and wanted to check an opinion I have formed.
The way in which phpLib7.4pre2 checks user authentication
in CT_LDAP is somewhere between wierd and useless. From
what I can read in the source you can not authenticate
"normal" LDAP users. Instead phpLib wants its own
attributes for username and password (instead of using the
DN for userID and so on.)
I would prefer a method that looks for a DN (which is
allways unique) and then tries to bind to the server with that
DN and the provided password. This is the way that
mod_auth in apache handles the password check and is
What are the reasons for the implementation in phpLib and
what are the plans for the future? In php4 you could have
the whole page managment without an sql backend which is
Or, I could just be way off and I am mistaking totally?