[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: LDAP_OPT_X_SASL_AUTHCID and LDAP_OPT_X_SASL_AUTHZID



Michael Ströder wrote:
Howard Chu wrote:
Michael Ströder wrote:
Philip Guenther wrote:
Does cyrus-sasl even provide a means to get the authentication ID used?
That's exactly the question...
Yes. sasl_getprop( sasl_context, SASL_USERNAME, ... )

libldap will already display this on stderr if you don't specify the
LDAP_SASL_QUIET option.
Is the SASL context reachable through libldap?
Looks like not. And judging from what we've gone thru with TLS, it's probably 
a bad idea to expose it. Perhaps you should file an enhancement request for a 
getopt flag to return the SASL username.
--
  -- Howard Chu
  CTO, Symas Corp.           http://www.symas.com
  Director, Highland Sun     http://highlandsun.com/hyc/
  Chief Architect, OpenLDAP  http://www.openldap.org/project/