3 * Copyright 1998-2003 The OpenLDAP Foundation, All Rights Reserved.
4 * COPYING RESTRICTIONS APPLY, see COPYRIGHT file
7 * Copyright (c) 1990 Regents of the University of Michigan.
13 * Portions Copyright (C) The Internet Society (1997)
14 * ASN.1 fragments are from RFC 2251; see RFC for full legal notices.
18 * BindRequest ::= SEQUENCE {
20 * name DistinguishedName, -- who
21 * authentication CHOICE {
22 * simple [0] OCTET STRING -- passwd
23 #ifdef LDAP_API_FEATURE_X_OPENLDAP_V2_KBIND
24 * krbv42ldap [1] OCTET STRING
25 * krbv42dsa [2] OCTET STRING
27 * sasl [3] SaslCredentials -- LDAPv3
31 * BindResponse ::= SEQUENCE {
32 * COMPONENTS OF LDAPResult,
33 * serverSaslCreds OCTET STRING OPTIONAL -- LDAPv3
42 #include <ac/stdlib.h>
44 #include <ac/socket.h>
45 #include <ac/string.h>
52 * ldap_bind - bind to the ldap server (and X.500). The dn and password
53 * of the entry to which to bind are supplied, along with the authentication
54 * method to use. The msgid of the bind request is returned on success,
55 * -1 if there's trouble. Note, the kerberos support assumes the user already
56 * has a valid tgt for now. ldap_result() should be called to find out the
57 * outcome of the bind request.
60 * ldap_bind( ld, "cn=manager, o=university of michigan, c=us", "secret",
65 ldap_bind( LDAP *ld, LDAP_CONST char *dn, LDAP_CONST char *passwd, int authmethod )
68 LDAP_LOG ( OPERATION, ENTRY, "ldap_bind\n", 0, 0, 0 );
70 Debug( LDAP_DEBUG_TRACE, "ldap_bind\n", 0, 0, 0 );
73 switch ( authmethod ) {
74 case LDAP_AUTH_SIMPLE:
75 return( ldap_simple_bind( ld, dn, passwd ) );
77 #ifdef LDAP_API_FEATURE_X_OPENLDAP_V2_KBIND
78 case LDAP_AUTH_KRBV41:
79 return( ldap_kerberos_bind1( ld, dn ) );
81 case LDAP_AUTH_KRBV42:
82 return( ldap_kerberos_bind2( ld, dn ) );
86 /* user must use ldap_sasl_bind */
90 ld->ld_errno = LDAP_AUTH_UNKNOWN;
96 * ldap_bind_s - bind to the ldap server (and X.500). The dn and password
97 * of the entry to which to bind are supplied, along with the authentication
98 * method to use. This routine just calls whichever bind routine is
99 * appropriate and returns the result of the bind (e.g. LDAP_SUCCESS or
100 * some other error indication). Note, the kerberos support assumes the
101 * user already has a valid tgt for now.
104 * ldap_bind_s( ld, "cn=manager, o=university of michigan, c=us",
105 * "secret", LDAP_AUTH_SIMPLE )
106 * ldap_bind_s( ld, "cn=manager, o=university of michigan, c=us",
107 * NULL, LDAP_AUTH_KRBV4 )
113 LDAP_CONST char *passwd,
117 LDAP_LOG ( OPERATION, ENTRY, "ldap_bind_s\n", 0, 0, 0 );
119 Debug( LDAP_DEBUG_TRACE, "ldap_bind_s\n", 0, 0, 0 );
122 switch ( authmethod ) {
123 case LDAP_AUTH_SIMPLE:
124 return( ldap_simple_bind_s( ld, dn, passwd ) );
126 #ifdef LDAP_API_FEATURE_X_OPENLDAP_V2_KBIND
127 case LDAP_AUTH_KRBV4:
128 return( ldap_kerberos_bind_s( ld, dn ) );
130 case LDAP_AUTH_KRBV41:
131 return( ldap_kerberos_bind1_s( ld, dn ) );
133 case LDAP_AUTH_KRBV42:
134 return( ldap_kerberos_bind2_s( ld, dn ) );
138 /* user must use ldap_sasl_bind */
142 return( ld->ld_errno = LDAP_AUTH_UNKNOWN );