[Date Prev][Date Next] [Chronological] [Thread] [Top]

userPassword Octet String

To: openldap-software <openldap-software@OpenLDAP.org>
Subject: userPassword Octet String
From: Michael Ströder <michael@stroeder.com>
Date: Thu, 17 May 2001 01:46:07 +0200
Organization: stroeder.com

Hmm.

attributetype ( 2.5.4.35 NAME 'userPassword'
        EQUALITY octetStringMatch
        SYNTAX 1.3.6.1.4.1.1466.115.121.1.40{128} )

How should a client behave when the user types in a password with
NON-ASCII characters? Very likely you receive the password in some
type of character set/encoding within your system environment.

Personally I encode the user input as UTF-8 before setting the
userPassword attribute or doing a bind. But according to the schema
definition above this might be wrong. But if there's no rule how to
encode user's input every LDAP client would be free to store any
password value leading to incompatible password handling. Or did I
misunderstand something?

Ciao, Michael.

Follow-Ups:
- Re: userPassword Octet String
  - From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>

Prev by Date: Re: OpenLDAP 2.0.7 - Base64 vs. Plaintext
Next by Date: "index delete failed" and "Inappropriate matching"
Index(es):
- Chronological
- Thread