Hi Achim, On Monday, 20. February 2006 22:49, Achim Grolms wrote: > I am maintaining a module GSSAPI.pm that is a Adapter to > the RFC2477 C-Bindings. > <http://perlgssapi.sourceforge.net/> > > My idea was to write an adapter that implements > the Authen::SASL interface, using GSSAPI.pm. > > I think that can be useful when using the Net::LDAP module. > > RFC 2222 "Simple Authentication and Security Layer (SASL)" > describes the GSSAPI over SASL integration. > In RFC 2222 multiple steps of > > while (SASL not finished) { > gssapi-call() > send() > recv() > } > > but the bind() Method of Net::LDAP > does only one call to the Authen::SASL object > and only one send( ). > > But has'nt ist to do multiple steps of SALS, send, recv()? > > My question: > is bind() doing steps wrong or is my thinking and understanding of this > wrong? > > Can you help?
the SVN repository of Authen::SASL at http://svn.mutatus.co.uk/ already contains a GSSAPI.pm in http://svn.mutatus.co.uk/wsvn/Authen-SASL/trunk/lib/Authen/SASL/Perl/ which was kindly provided by Simon Wilkinson a few weeks ago and which depends on your GSSAPI module. You might give it a try. Regarding your question about multiple calls: AFAIK (I am no expert on SASL) all the necessary steps are done inside the SASL object. So only one call is necessary in the Net::LDAP->bind() method. Any feedback is welcome. Regards Peter -- Peter Marschall eMail: [EMAIL PROTECTED]
