apr-bugs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From bugzi...@apache.org
Subject DO NOT REPLY [Bug 49064] New: APR-util does not support SASL binding
Date Wed, 07 Apr 2010 19:23:39 GMT

           Summary: APR-util does not support SASL binding
           Product: APR
           Version: HEAD
          Platform: All
        OS/Version: All
            Status: NEW
          Severity: enhancement
          Priority: P2
         Component: APR-util
        AssignedTo: bugs@apr.apache.org
        ReportedBy: pthomas@hpti.com

The OpenLDAP SDK when compiled against the Cyrus SASL library permits SASL
binding to the server.  This is particularly helpful when SASL EXTERNAL
authentication is used to authenticate the client based upon the client's
certificate presented when setting up the TLS session.

If implemented, customers with a compatible client and server could remove the
hard-coded, plain-text AuthLDAPBindPassword variable from their Apache httpd
server configuration files.  httpd's mod_ldap.so is dependent upon APR-util's
ldap capabilities.  I'd like to be able to specify "AuthLDAPBindSASL on"
[potentially with other SASL options supporting any mechanisms other than
EXTERNAL in common use]

[An example of support for SASL binding is demonstrated in the OpenLDAP SDK's
tools/common.c file].

Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.

To unsubscribe, e-mail: bugs-unsubscribe@apr.apache.org
For additional commands, e-mail: bugs-help@apr.apache.org

View raw message