You read my mind. I'm all over it. :)
Brad
>>> Graham Leggett <[EMAIL PROTECTED]> Wednesday, February 02, 2005
12:13:56 PM >>>
Brad Nicholes wrote:
>I have got something that almost works now. The problem that I
am
> running into is that util_ldap_connection_find() doesn't know the
> diff
Brad Nicholes wrote:
I have got something that almost works now. The problem that I am
running into is that util_ldap_connection_find() doesn't know the
difference between APR_LDAP_NONE(the secure mode was never set so use
the default) vs. APR_LDAP_NONE (NONE is what I really want). Seems like
I have got something that almost works now. The problem that I am
running into is that util_ldap_connection_find() doesn't know the
difference between APR_LDAP_NONE(the secure mode was never set so use
the default) vs. APR_LDAP_NONE (NONE is what I really want). Seems like
we need another flag
Brad Nicholes wrote:
+1, allowing mod_authnz_ldap to override the default makes a lot more
sense. Unless you are already working on a patch, I will try to put
something together today. But after today I will be offline for the
next two days.
I will only have a chance to work on this tomorrow :(
R
+1, allowing mod_authnz_ldap to override the default makes a lot more
sense. Unless you are already working on a patch, I will try to put
something together today. But after today I will be offline for the
next two days.
Brad
>>> [EMAIL PROTECTED] Wednesday, February 02, 2005 1:23:51 AM >>>
Bra
Brad Nicholes said:
> The attached patches convert LDAPTrustedMode into a per-directory
> directive rather than a per-server. This allows the configuration to
> specify which mode should be applied for the associated AuthLDAPURL.
>
> Thoughts on whether this should be the way to go or if LDAPTrus
At 07:07 PM 2/1/2005, Brad Nicholes wrote:
>Thoughts on whether this should be the way to go or if LDAPTrustedMode
>should be moved up into mod_authnz_ldap as AuthLDAPTrustedMode?
Absolutely!!! TrustedMode should always be paired to URL
The attached patches convert LDAPTrustedMode into a per-directory
directive rather than a per-server. This allows the configuration to
specify which mode should be applied for the associated AuthLDAPURL.
Thoughts on whether this should be the way to go or if LDAPTrustedMode
should be moved up i
After testing mod_authnz_ldap and util_ldap some more, it appears
that the directive LDAPTrustedMode should be pushed up into
mod_authnz_ldap rather than util_ldap and become AuthLDAPTrustedMode.
The reason why is because the connection type (ie. NONE, SSL, STARTTLS)
is tied to the AuthLDAPUrl
