[Date Prev][Date Next] [Chronological] [Thread] [Top]


On Sat, 15 Aug 2009, Michael Ströder wrote:
> I was hoping to find a SASL option to query the Kerberbos principal name 
> actually used after a successful SASL/GSSAPI bind.

Are you trying to ask a purely local question or is the server's opinion 
of what authorization ID you actually ended up with relevant?

For the latter, try ldap_whoami() or ldap_whoami_s().

For the former, I suspect you'll have to add a new LDAP option to get the 
underlying sasl context handle and then peel it out of there yourself.  
Does cyrus-sasl even provide a means to get the authentication ID used?

Philip Guenther