Do not attempt to use START_TLS on SSL connections

Not all LDAP servers are capable of handling dual-encryption with both TLS and SSL. https://fedorahosted.org/sssd/ticket/795
author: Stephen Gallagher <sgallagh@redhat.com> 2011-02-11 13:10:27 -0500
committer: Stephen Gallagher <sgallagh@redhat.com> 2011-02-16 09:38:22 -0500
commit: cc2b267e14db7073e7247b52cc9d82dfdf280076 (patch)
tree: cfe72d47f838ccfee0b7dba2dd15d506ec2ec1f4 /src/providers/ldap/ldap_common.h
parent: a1294c95a4f9f37bbe9a8635defa3a45e59213ab (diff)
download: sssd-cc2b267e14db7073e7247b52cc9d82dfdf280076.tar.gz
sssd-cc2b267e14db7073e7247b52cc9d82dfdf280076.tar.xz
sssd-cc2b267e14db7073e7247b52cc9d82dfdf280076.zip
1 files changed, 7 insertions, 0 deletions
diff --git a/src/providers/ldap/ldap_common.h b/src/providers/ldap/ldap_common.h
index 3cbf3f600..9146da5a9 100644
--- a/src/providers/ldap/ldap_common.h
+++ b/src/providers/ldap/ldap_common.h
@@ -34,6 +34,10 @@
 
 #define SSS_LDAP_SRV_NAME "ldap"
 
+#define LDAP_STANDARD_URI "ldap://"
+#define LDAP_SSL_URI "ldaps://"
+#define LDAP_LDAPI_URI "ldapi://"
+
 /* a fd the child process would log into */
 extern int ldap_child_debug_fd;
 
@@ -155,4 +159,7 @@ errno_t list_missing_attrs(TALLOC_CTX *mem_ctx,
                            const char **expected_attrs,
                            struct sysdb_attrs *recvd_attrs,
                            char ***missing_attrs);
+
+bool sdap_is_secure_uri(const char *uri);
+
 #endif /* _LDAP_COMMON_H_ */
author	Stephen Gallagher <sgallagh@redhat.com>	2011-02-11 13:10:27 -0500
committer	Stephen Gallagher <sgallagh@redhat.com>	2011-02-16 09:38:22 -0500
commit	cc2b267e14db7073e7247b52cc9d82dfdf280076 (patch)
tree	cfe72d47f838ccfee0b7dba2dd15d506ec2ec1f4 /src/providers/ldap/ldap_common.h
parent	a1294c95a4f9f37bbe9a8635defa3a45e59213ab (diff)
download	sssd-cc2b267e14db7073e7247b52cc9d82dfdf280076.tar.gz sssd-cc2b267e14db7073e7247b52cc9d82dfdf280076.tar.xz sssd-cc2b267e14db7073e7247b52cc9d82dfdf280076.zip