[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: StartTLS URL extension

Michael Ströder wrote:

Yes I also find it useful. Not sure whether it should be within
ldap_initialize() or just in the client apps though.

The first could be problematic if client applications just read the LDAP
URI from some configuration file and pass it as is to ldap_initialize()
and after that call ldap_start_tls() a second time based on different
configuration parameters.

I don't see a big issue here: first of all, if the app is correctly documented, one would only use this extension if needed. Moreover, ldap_initialize can record that StartTLS was already requested because of the extension, and avoid requesting it twice.


Ing. Pierangelo Masarati OpenLDAP Core Team

SysNet s.r.l.
via Dossi, 8 - 27100 Pavia - ITALIA
Office:  +39 02 23998309
Mobile:  +39 333 4963172
Fax:     +39 0382 476497
Email:   ando@sys-net.it