Menu
▾
▴
Re: [Fwd] Re: query on ldap->bind & ldap->compare
|
From: Chris R. <Chr...@me...> - 2000-05-04 14:45:40
|
On Thu, 04 May 2000 15:12:54 BST, Graham Barr wrote:
> On Thu, May 04, 2000 at 02:49:22PM +0100, Chris Ridd wrote:
> > That makes sense. Something like a 'method' parameter, with values
> > 'anonymous'/'none' (empty name + empty password), 'nameonly' (name +
> > empty password), 'simple' (name + password), or 'sasl' (erm, "stuff").
>
> Hm, you mean split the method and password into two like
>
> method => 'sasl', password => $sasl
> method => 'anonymous'
> method => 'simple', password => $pass
Yes, but still including 'dn'.
> was just tinking of requiring one of sasl anon (none anonymous whatever) or
> simple to be passed. This gives compatability with the current syntax and
> gives checking too. Also a password of '' should probably not be allowed
> with simple.
I think we're saying the same thing.
Examples:
bind(method => 'none')
bind(method => 'simple',
dn => 'blah', password => 'blah')
bind(method => 'nameonly',
dn => 'blah')
bind(method => 'sasl',
dn => 'blah', ... more stuff for SASL ... )
Bind can look at method and do whatever checking it wants on the other
parameters, like checking for empty passwords in certain cases.
> > The current default of 'none' should be kept.
>
> You mean anonymous bind if no method is given ? That would leave
> use where we are now if someone misspells method. I would rather
> requier a method parameter.
Oh yeah :-) Sorry I must have been thinking about something else...
> Graham.
Chris
|
