directory-api mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Nick Weaver <>
Subject LDAP API Enhancement Suggestions
Date Mon, 15 Apr 2019 14:01:38 GMT
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
<style type="text/css" style="display:none"><!-- p { margin-top: 0px; margin-bottom:
0px; }--></style>
<body dir="ltr" style="font-size:12pt;color:#000000;background-color:#FFFFFF;font-family:Calibri,Arial,Helvetica,sans-serif;">
<p style="font-family: Calibri, Arial, Helvetica, sans-serif; font-size: 16px;">Hello,<br>
<p style="font-family: Calibri, Arial, Helvetica, sans-serif; font-size: 16px;"><br>
<p style="font-family: Calibri, Arial, Helvetica, sans-serif; font-size: 16px;">I've
been making use of the LDAP API that's part of the Directory project for some integration
between the program I work with and external LDAP servers, mainly Active Directory.&nbsp;
 The API is easy to understand and use, but it's missing a small bit of functionality I require;
while SASL authentication works, I didn't find any support for encrypting/decrypting&nbsp;payloads
on a connection that negotiates authentication with integrity and
 privacy protection.&nbsp; I found the SaslFilter class in the DS sub-project and modified
it to work with a SaslClient and modified the LdapNetworkConnection class to add the SaslFilter
once SASL authentication has been confirmed.&nbsp; I've attached a file with the
 modified SaslFilter class, works great for me using GSSAPI/Kerberos encryption.&nbsp;
So my suggestions:<br>
<p style="font-family: Calibri, Arial, Helvetica, sans-serif; font-size: 16px;"><br>
<p style="font-family: Calibri, Arial, Helvetica, sans-serif; font-size: 16px;">(1)
Add the SaslFilter or your own version of the functionality to the API (what I have works
but you know your API better than I do)<br>
<p style="font-family: Calibri, Arial, Helvetica, sans-serif; font-size: 16px;">(2)
Possibly add a method to LdapNetworkConnection that enables adding custom&nbsp;filters
to the session post-authentication&#8203;<br>
<p>Nick Weaver<br>
<p id="c1-id-7" style="FONT-SIZE: 0px; FONT-FAMILY: Arial; COLOR: #fff; TEXT-ALIGN: left">
<table id="c1-id-8" style="BORDER-LEFT-WIDTH: 0px; BORDER-RIGHT-WIDTH: 0px; BORDER-BOTTOM-WIDTH:
0px; BORDER-TOP-WIDTH: 0px">
<colgroup id="c1-id-9"><col id="c1-id-10"></colgroup>
<tbody id="c1-id-11">
<tr id="c1-id-12">
<td id="c1-id-13">
<table id="c1-id-14" style="HEIGHT: 0px; WIDTH: 100%" cellspacing="0" cellpadding="0" border="0">
<colgroup id="c1-id-15"><col id="c1-id-16"><col id="c1-id-17"><col id="c1-id-18"></colgroup>
<tbody id="c1-id-19">
<td id="c1-id-21" style="WIDTH: 33%">
<p style="FONT-SIZE: 10pt; FONT-FAMILY: Arial; TEXT-ALIGN: left"><b id="c1-id-23"><font
id="c1-id-24" face="Arial">Nick Weaver<br id="c1-id-25">
</font></b><font id="c1-id-26" size="2" face="Arial">Software Engineer<br
</font><font id="c1-id-28" style="FONT-SIZE: 8pt" face="Arial">P: 336-397-5300
x64308<br id="c1-id-29">
F: <br id="c1-id-30">
<td id="c1-id-31" style="WIDTH: 33%" valign="middle">
<p id="c1-id-32" style="FONT-SIZE: 10pt; FONT-FAMILY: Arial; TEXT-ALIGN: center" align="center">
<img id="c1-id-33" alt="" src="cid:Caliber_PS_left_CMYK_247aef3c-9961-4e6c-a9f4-053e52f0093f.jpg">&nbsp;
<td id="c1-id-34" style="WIDTH: 33%">
<p id="c1-id-35" style="FONT-SIZE: 10pt; FONT-FAMILY: Arial; TEXT-ALIGN: right" align="right">
<font id="c1-id-36" style="FONT-SIZE: 8pt" face="Arial"><font id="c1-id-37" style="FONT-SIZE:
8pt" face="Arial"><br id="c1-id-38">
<br id="c1-id-39">
, North Carolina<br id="c1-id-40">
<br id="c1-id-41">
</font><a id="c1-id-44" href=""><font id="c1-id-46"
<table id="c1-id-47" style="WIDTH: 100%" cellspacing="2" border="0">
<colgroup id="c1-id-48"><col id="c1-id-49"><col id="c1-id-50"><col id="c1-id-51"></colgroup>
<tbody id="c1-id-52">
<tr id="c1-id-53">
<td id="c1-id-54" colspan="3">
<p id="c1-id-55" style="MARGIN-BOTTOM: 0px; FONT-SIZE: 10pt; FONT-FAMILY: Arial; MARGIN-TOP:
<font id="c1-id-56" size="1" face="Arial">This message has been sent on behalf of a
company that is part of the Harris Operating Group of Constellation Software Inc. These companies
are listed
<a href="">here</a>.<br>
If you prefer not to be contacted by Harris Operating Group <a href="">
please notify us</a>.<br>
This message is intended exclusively for the individual or entity to which it is addressed.
This communication may contain information that is proprietary, privileged or confidential
or otherwise legally exempt from disclosure. If you are not the named addressee,
 you are not authorized to read, print, retain, copy or disseminate this message or any part
of it. If you have received this message in error, please notify the sender immediately by
e-mail and delete all copies of the message.</font></p>
<p id="c1-id-64" style="FONT-SIZE: 10pt; FONT-FAMILY: Arial">&nbsp;</p>

View raw message