[dev] Proposed patch for passwd nonanonymous ldap-search
Jan Schneider
jan at horde.org
Fri Apr 9 10:43:06 PDT 2004
Zitat von Amith Varghese <amith at xalan.com>:
>> why do all other passwd backends get their username/passwd from
>> params, and just ldap needs that special "custom hook"?
>>
>> Timo
>
>
> Please keep messages on the list:
>
> LDAP uses a hook because it allows for greater flexibility than the
> solution you
> provided. For example, I disallow anonymous reads on my LDAP
> database, and in
> addition I only allow users to change their own password. Based on your
> solution, I have to limit who can bind to the LDAP server to 1 person (which
> wouldn't work in my environment because users have to change their own
> password). In theory I could hack the configuration file so that I could get
> it to work in my environment, but everytime you went through the
> admin section
> to change your configuration, the web GUI would blow away the custom
> modifications. The hook is the preferred way to implement this type of
> change.
> Other backends don't require this because very few of them are setup
> like LDAP
While I generally agree to you, I want to point out that the config
interface doesn't destroy custom code in the config files, as long as it
stays outside the comments.
Jan.
--
http://www.horde.org - The Horde Project
http://www.ammma.de - Neue Wege des Lernens
http://www.tip4all.de - Deine private Tippgemeinschaft
More information about the dev
mailing list