mirror/openldap
2
0
Fork 0
mirror of https://git.openldap.org/openldap/openldap.git synced 2025-01-06 10:46:21 +08:00
Code Issues Packages Projects Releases Wiki Activity

clarify why we don't accept scheme other than ldap:// in authz-regexps

Browse Source
This commit is contained in:
Pierangelo Masarati 2004-12-08 19:09:54 +00:00
parent cad0d2b705
commit 80c2bb5003
1 changed files with 7 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
servers/slapd/saslauthz.c
View File

@ -411,6 +411,13 @@ is_dn: bv.bv_len = uri->bv_len - (bv.bv_val - uri->bv_val);
rc = ldap_url_parse( uri->bv_val, &ludp );
switch ( rc ) {
case LDAP_URL_SUCCESS:
/* FIXME: the check is pedantic, but I think it's necessary,
* because people tend to use things like ldaps:// which
* gives the idea SSL is being used. Maybe we could
* accept ldapi:// as well, but the point is that we use
* an URL as an easy means to define bits of a search with
* little parsing.
*/
if ( strcasecmp( ludp->lud_scheme, "ldap" ) != 0 ) {
/*
* must be ldap:///