[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: LDAP Verify Credentials operation

To: "Kurt Zeilenga" <Kurt@OpenLDAP.org>
Subject: Re: LDAP Verify Credentials operation
From: masarati@aero.polimi.it
Date: Thu, 30 Dec 2010 14:09:33 +0100 (CET)
Cc: openldap-devel@OpenLDAP.org
Importance: Normal
In-reply-to: <5AABD801-76AC-4379-8BEF-E04A1DC08EBD@OpenLDAP.org>
References: <5AABD801-76AC-4379-8BEF-E04A1DC08EBD@OpenLDAP.org>
User-agent: SquirrelMail/1.4.15

> I'm going to add a LDAP 'Verify Credentials' operation to the client side
> in OpenLDAP (as that's I'll I need).  The operation behaves like LDAP Bind
> excepting it has no impact upon the underlying LDAP session (no change to
> the authorization associations, no change of layers, etc.).   No spec yet,
> want to have a working implementation first.
>
> The operation is intended to be used by LDAP clients which are application
> protocol servers to authenticate application protocol users.  For
> instance, a web server could authenticate it's users via this operation.
> Multiple operations can be executed in parallel on a session.  SASL can be
> used.   Could also be used by a DSA to authenticate users whose entries
> (or complete entries) are not held by the DSA.
>
> Wondering if there are any volunteers to implement the server side?
> Should be relatively straight forward.

I can spare some time on this, hopefully.  Is it OK if I start looking at
how request/response are encoded in the client library, or should I know
something more first?

Cheers, p.

References:
- LDAP Verify Credentials operation
  - From: Kurt Zeilenga <Kurt@OpenLDAP.org>

Prev by Date: Re: vc function names (was: commit: ldap/include ldap.h)
Next by Date: Re: LDIF wrapping (Was: ITS#6645)
Index(es):
- Chronological
- Thread