[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
mailing lists
Nobody reading this list has any power to remove you from the list. You
received an email with instructions for unsubscribing when you joined this
list. You are the only person with the power to execute the unsubscribe
command. Learn to read, and learn to follow directions, and you might not
make such a fool of yourself in front of a global audience the next time you
have such an opportunity. You can also read the directions on
http://www.openldap.org/lists if you've lost the original subscription
message. You better hope your employer never sees the emails you've sent;
they don't reflect well on your technical competence or professionalism.
-- Howard Chu
Chief Architect, Symas Corp. Director, Highland Sun
http://www.symas.com http://highlandsun.com/hyc
Symas: Premier OpenSource Development and Support
> -----Original Message-----
> From: owner-openldap-software@OpenLDAP.org
> [mailto:owner-openldap-software@OpenLDAP.org]On Behalf Of Zernicke
> Andrew
> Sent: Wednesday, November 20, 2002 10:21 PM
> To: 'James Bourne'; marc.bigler@day.com
> Cc: openldap-software@OpenLDAP.org
> Subject: RE: ldap_bind in php
>
>
> I ask now since a week that I have to deal with 600 mails a
> day, so please
> get me off this, or I start sending some bad mails
>
> -----Original Message-----
> From: James Bourne [mailto:jbourne@mtroyal.ab.ca]
> Sent: woensdag 20 november 2002 19:51
> To: marc.bigler@day.com
> Cc: openldap-software@OpenLDAP.org
> Subject: Re: ldap_bind in php
>
>
> On Wed, 20 Nov 2002 marc.bigler@day.com wrote:
>
> > Hello,
> >
> > I know this also involves PHP but I post it here because I
> think maybe
> it's
> > a problem with my access statement in slapd.conf. What I
> would like to do
> > is to authenticate users via LDAP, the problem that I
> currently encounter
> > is if the user doesn't input a password ldap_bind returns
> true which means
> > that it somehow succeeded... This is my PHP code:
> >
> > $ldap_bind_result = ldap_bind($ds,
> "cn=marc,ou=users,dc=test,dc=tld", "");
> >
> > if ($ldap_bind_result) {
> > echo "ldap_bind succeeded";
> > } else {
> > echo "ldap_bind failed";
> > }
>
> Hi,
> IIRC, this will be an anonymous bind, and will succeed until you try
> to fetch enything from ldap...
>
> Regards
> James Bourne
> >
> > In this case i get succeeded, which I shouldn't, the same
> happens if I
> take
> > a fake name which doesn't even exist as "cn". My access
> statement looks
> > like this:
> >
> > access to *
> > by users write
> >
> > Where I only want to let authenticated users do something.
> >
> > Am I missing something ?
> >
> > Thanks for the help
> >
> > Regards
> > Marc
> >
> >
>
> --
> James Bourne, Supervisor Data Centre Operations
> Mount Royal College, Calgary, AB, CA
> www.mtroyal.ab.ca
>
> **************************************************************
> **************
> **
> This communication is intended for the use of the recipient
> to which it is
> addressed, and may contain confidential, personal, and or privileged
> information. Please contact the sender immediately if you are not the
> intended recipient of this communication, and do not copy,
> distribute, or
> take action relying on it. Any communication received in error, or
> subsequent reply, should be deleted or destroyed.
> **************************************************************
> **************
> **
>
>
> "There are only 10 types of people in this world: those who
> understand binary and those who don't."
>
>
>
> > *************************************************************
> > Dit e-mail bericht inclusief eventuele ingesloten bestanden
> kan informatie
> > bevatten die vertrouwelijk is en/of beschermd door intellectuele
> > eigendomsrechten. Dit bericht is uitsluitend bestemd voor de
> > geadresseerde(n). Elk gebruik van de informatie vervat in
> dit bericht
> > (waaronder de volledige of gedeeltelijke reproductie of
> verspreiding onder
> > elke vorm) door andere personen dan de geadresseerde(n) is verboden.
> > Indien u dit bericht per vergissing heeft ontvangen,
> gelieve de afzender
> > hiervan te verwittigen en dit bericht te verwijderen.
> >
> > This e-mail and any attachment thereto may contain
> information which is
> > confidential and/or protected by intellectual property
> rights and are
> > intended for the sole use of the addressees. Any use of the
> information
> > contained herein (including but not limited to total or partial
> > reproduction or distribution in any form) by other persons than the
> > addressees is prohibited. If you have received this e-mail in error,
> > please notify the sender and delete its contents.
> > *************************************************************
> >
>
>