[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: question on RFC3062 - plugin API

To: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
Subject: Re: question on RFC3062 - plugin API
From: Kervin Pierre <kpierre@fit.edu>
Date: Thu, 05 Jul 2001 21:37:05 -0400
Cc: openldap-devel@OpenLDAP.org
References: <5.1.0.14.0.20010705110747.0350ce50@127.0.0.1>

Hi,

Thanks for your response Kurt.

Is the plugin API documented?  I know it's experimental.  If it is,
where can I find this documentation. 

Specifically I'd like to create a plugin that notifies an external
program that a attribute has changed/deleted or an object of type
objectclass which requires/allows the presence of this attribute has
been added/deleted.  The plugin would notify the external program (
write to an external file etc. ) of the operation that occurred and the
return code/status of that operation.

I took a look at 3112.  Is this suppose to be a replacement to the
common habit of adding the encryption type before the value in the
userpassword attribute?  Because, according to what I took from this
RFC, it's suppose to to allow the storage of hashed passwords in the
directory instead of plain text.  But many directories already do this
by stating the encryption type in the attribute value. eg. {CRYPT} or
{SHA}, etc.  I know I probably read the RFC wrong, but is that the case?

Another potentially stupid question is, how is 3062 different from
sending a ldapmodify request on a the userpassword attribute as that
user?

-Kervin

"Kurt D. Zeilenga" wrote:
> 
> At 12:21 AM 7/5/2001, Kervin Pierre wrote:
> >I'm interested in RFC3062 and what it is.  I read the document, but I
> >still have a few questions.
> >
> >(i)Is it already implemented in OpenLDAP?
> 
> Yes.
> 
> >I thought it was but then I saw it listed on a recent TODO list.
> 
> The TODO list has a incorrect reference.  authPassword,
> which is not yet implemented, is RFC 3112 not RFC 3062.
> 
> >(ii)Will OpenLDAP automatically send a userpassword modify request when
> >a user is added/modified/deleted?
> 
> I don't grok this question.  ldappassword(1) will send the
> password modify request when it's run (with appropriate
> arguments) and the server will process the request and
> return an appropriate response.
> 
> >(iii)Does OpenLDAP have a plugin API?
> 
> Not sure how this relates to the above, but, yes. OpenLDAP
> has an experimental plugin API.
> 
> Kurt

Follow-Ups:
- Re: question on RFC3062 - plugin API
  - From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>

References:
- Re: question on RFC3062
  - From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>

Prev by Date: Re: question on RFC3062
Next by Date: Re: question on RFC3062 - plugin API
Index(es):
- Chronological
- Thread