Pierangelo Masarati wrote: > Michael Ströder wrote: > >> Yes I also find it useful. Not sure whether it should be within >> ldap_initialize() or just in the client apps though. >> >> The first could be problematic if client applications just read the LDAP >> URI from some configuration file and pass it as is to ldap_initialize() >> and after that call ldap_start_tls() a second time based on different >> configuration parameters. > > I don't see a big issue here: first of all, if the app is correctly > documented, one would only use this extension if needed.
In simple cases there might not be any problem. > Moreover, > ldap_initialize can record that StartTLS was already requested because > of the extension, and avoid requesting it twice. What does "avoid requesting it twice" mean? Return an error code or simply ignore it? Note that a client might wanna take note of whether ldap_start_tls() was successfully called by itself or not. Ciao, Michael.
