[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: ldap_bind in php

I ask now since a week that I have to deal with 600 mails a day, so please
get me off this, or I start sending some bad mails 

-----Original Message-----
From: James Bourne [mailto:jbourne@mtroyal.ab.ca]
Sent: woensdag 20 november 2002 19:51
To: marc.bigler@day.com
Cc: openldap-software@OpenLDAP.org
Subject: Re: ldap_bind in php

On Wed, 20 Nov 2002 marc.bigler@day.com wrote:

> Hello,
> I know this also involves PHP but I post it here because I think maybe
> a problem with my access statement in slapd.conf. What I would like to do
> is to authenticate users via LDAP, the problem that I currently encounter
> is if the user doesn't input a password ldap_bind returns true which means
> that it somehow succeeded... This is my PHP code:
> $ldap_bind_result = ldap_bind($ds, "cn=marc,ou=users,dc=test,dc=tld", "");
> if ($ldap_bind_result) {
>         echo "ldap_bind succeeded";
> } else {
>      echo "ldap_bind failed";
> }

IIRC, this will be an anonymous bind, and will succeed until you try
to fetch enything from ldap...

James Bourne
> In this case i get succeeded, which I shouldn't, the same happens if I
> a fake name which doesn't even exist as "cn". My access statement looks
> like this:
> access to *
>      by users write
> Where I only want to let authenticated users do something.
> Am I missing something ?
> Thanks for the help
> Regards
> Marc

James Bourne, Supervisor Data Centre Operations
Mount Royal College, Calgary, AB, CA

This communication is intended for the use of the recipient to which it is
addressed, and may contain confidential, personal, and or privileged
information. Please contact the sender immediately if you are not the
intended recipient of this communication, and do not copy, distribute, or
take action relying on it. Any communication received in error, or
subsequent reply, should be deleted or destroyed.

"There are only 10 types of people in this world: those who
understand binary and those who don't."

> *************************************************************
> Dit e-mail bericht inclusief eventuele ingesloten bestanden kan informatie
> bevatten die vertrouwelijk is en/of beschermd door intellectuele
> eigendomsrechten. Dit bericht is uitsluitend bestemd voor de
> geadresseerde(n). Elk gebruik van de informatie vervat in dit bericht
> (waaronder de volledige of gedeeltelijke reproductie of verspreiding onder
> elke vorm) door andere personen dan de geadresseerde(n) is verboden.
> Indien u dit bericht per vergissing heeft ontvangen, gelieve de afzender
> hiervan te verwittigen en dit bericht te verwijderen. 
> This e-mail and any attachment thereto may contain information which is
> confidential and/or protected by intellectual property rights and are
> intended for the sole use of the addressees. Any use of the information
> contained herein (including but not limited to total or partial
> reproduction or distribution in any form) by other persons than the
> addressees is prohibited. If you have received this e-mail in error,
> please notify the sender and delete its contents. 
> *************************************************************