Thanks for the update Anton. Do you know when a possible patch would be
ready?
i just made the patch available in bugzilla. if you are Sun DS customer
you can get Sun binaries containing the fix thru standard support case,
mention CR 6396130 "sasl bind does not respect LDAP_OPT_RECONNECT
option" to our support folks. Mozilla bugid is 330255 btw.
I also have one last question about your work around. When you say a
simple_bind with real creds, do you mean I need the actual username and
password such that the bind succeeds? This is somewhat of a problem in
our environment because our apps bind as whichever user is running it,
so depending on who is running the app it will connect as someone
different. Thus, hard coding a password isn't an option.
yeah i understand that, just couldnt think of better workaround there,
if anonymous bind doest make defconn alive for subsequent sasl bind
and you cant use any dummy [ read dn/passwd ] simple bind then i cant
think of any other workaround you can use there. perhaps creating some
dummy a la anonymous user with appropriate access controls ie deny all
can help tho i can dig what a hassle that is from yr product dev pov..
Thanks again for all your help and research on this, I greatly
appreciate it.
Mike
On 3/8/06, *Anton Bobrov* < [EMAIL PROTECTED]
<mailto:[EMAIL PROTECTED]>> wrote:
Mike, this is sasl bind specific, it doesnt respect reconnect
option. i will file both Mozilla and Sun bugs and make the fix
available shortly. for the now your only option to workaround
is to call dummy simple bind with some real creds not anon and
then call sasl bind on top of it or resort to simple bind only
.
Mike wrote:
> So basically whenever I detect the disconnection, the code will call
> connect() to rebind. The problem I'm seeing is, after the initial
> connection, anytime it hits that ldap_sasl_bind_s() call it gives me
> "Encoding error (83)". I've tried adding in a regular
> ldap_simple_bind_s(NULL, NULL) before the sasl bind to do an
anonymous
> bind first, but it gives me Cannot connect error. I was under the
> impression I only needed to do the bind (simple or sasl) after the
> disconnect to get going again, but this doesn't work.
>
> On an aside, I'm using whichever version of the SDK that ships with
> iPlanet SDRK 5.2. Perhaps this has been fixed in a later version?
>
> Thanks, Mike
> _______________________________________________
> dev-tech-ldap mailing list
> [email protected]
<mailto:[email protected]>
> https://lists.mozilla.org/listinfo/dev-tech-ldap
------------------------------------------------------------------------
_______________________________________________
dev-tech-ldap mailing list
[email protected]
https://lists.mozilla.org/listinfo/dev-tech-ldap
_______________________________________________
dev-tech-ldap mailing list
[email protected]
https://lists.mozilla.org/listinfo/dev-tech-ldap
