>> On the other hand, Ldaptive provides some support for this: >> >> http://www.ldaptive.org/docs/guide/authentication/accountstate > > > I've found most LDAP libraries to be ridiculously overly complex. Ldap is > very simple, and shouldn't be made so complex.
There's hardly anything simple about LDAP. The BER encoding used by the LDAP protocol is tedious at best and a hot mess at worst. The full LDAP specification includes a _ton_ of facilities and a comprehensive library should support most if not all of the spec. Then there's all the directory-specific functionality and the crazy things folks want to do with their directories, and any library that wants to support them will necessarily be complex. Ldaptive is consequently complex. The ldap bind operation is fairly simple in its commonest form, and if that's your standard of complexity then no wonder you're put off by modern LDAP libs. Unfortunately there's a heck of a lot more than simple binds. M -- You are currently subscribed to cas-dev@lists.jasig.org as: arch...@mail-archive.com To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-dev
