On Mon, Feb 22, 2010 at 12:33 PM, Thomas, Peter <ptho...@hpti.com> wrote:
> Even if we do this, we * still * need this patch or something like it to tell > the LDAP provider that it should only perform authorization, and not > authentication. [Effectively we would be telling it to start with the > compare phase, and do so WITHOUT binding as the user.] This should not be the case in 2.2.x and later, where we can call out individual authn and authz providers (and mix/match) explicitly. -- Eric Covener cove...@gmail.com
