ID: 9025
Updated by: venaas
Reported By: [EMAIL PROTECTED]
Old Status: Open
Status: Closed
Bug Type: Feature/Change Request
Operating System: any
PHP Version: 4.0.4pl1
New Comment:
The problem is not in PHP, PHP uses the standard LDAP
compare operation and you have not given access to that.
If you want access like specified below, the only way I
see, is that you bind to the users entry on behalf of
the user. The LDAP server will then be able to validate
the password. Your PHP application can then choose to not
give access unless it has made a successful bind on behalf
of the user.
If you replace none with compare in your rule, everyone
(including your PHP application) will be able to do compare
on passwords, but not read them. If your PHP application
authenticates itself first, you can give PHP access to
compare, and still have none for the rest.
Previous Comments:
------------------------------------------------------------------------
[2001-01-31 06:18:05] [EMAIL PROTECTED]
It would be immensly valuable if I could use my ldap user
database to authenticate my php website users. The current
ldap compare does not work with openldap and the following
settings:
access to attr=userPassword
by self write
by * none
I would love love love it if there were a fuction that would
take my plain text password (as a variable) and then
authenticate agains the above settings in ldap.
Thanks for all the time so far, PHP is the best!
Brian
------------------------------------------------------------------------
Edit this bug report at http://bugs.php.net/?id=9025&edit=1
--
PHP Development Mailing List <http://www.php.net/>
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
To contact the list administrators, e-mail: [EMAIL PROTECTED]
