Hello,
I am trying to write an overlay which traps the sasl bind but listening on LDAP_REQ_BIND (bi_op_bind) did not result in trapping any sasl binds. Has anyone ever tried this and could give me some pointers as to where I could look for more information.
Thanks Kanika
Kanika Malhotra wrote:
Hello,
I am trying to write an overlay which traps the sasl bind but listening on LDAP_REQ_BIND (bi_op_bind) did not result in trapping any sasl binds. Has anyone ever tried this and could give me some pointers as to where I could look for more information.
SASL binds don't get handled by databases (of course, as SASL identities do not directly belong to any database __before__ they eventually get mapped to a LDAP object). You need to stack your overlay __before__ database selection (OpenLDAP >= 2.3). Note that right now intercepting binds may be a little bit tricky: see overlay/ppolicy.c as an example. You'll need to malloc the slap_callback structure, and make sure it gets freed later.
p.
Ing. Pierangelo Masarati OpenLDAP Core Team
SysNet s.n.c. Via Dossi, 8 - 27100 Pavia - ITALIA http://www.sys-net.it ------------------------------------------ Office: +39.02.23998309 Mobile: +39.333.4963172 Email: pierangelo.masarati@sys-net.it ------------------------------------------
openldap-software@openldap.org
-
Kanika Malhotra -
Pierangelo Masarati