Do not attempt to use START_TLS on SSL connections

Not all LDAP servers are capable of handling dual-encryption with both TLS and SSL. https://fedorahosted.org/sssd/ticket/795
author: Stephen Gallagher <sgallagh@redhat.com> 2011-02-11 13:10:27 -0500
committer: Stephen Gallagher <sgallagh@redhat.com> 2011-02-15 07:42:14 -0500
commit: 9ae3cdc58118884e3bac4e7702d3d0b23ba0e450 (patch)
tree: ae8075ccd301616f214879ad1a0af3ce26cff651 /src/providers/ldap/ldap_common.h
parent: 480735cddc41159344b3e9f65b3e808fe44c82ce (diff)
download: sssd-9ae3cdc58118884e3bac4e7702d3d0b23ba0e450.tar.gz
sssd-9ae3cdc58118884e3bac4e7702d3d0b23ba0e450.tar.xz
sssd-9ae3cdc58118884e3bac4e7702d3d0b23ba0e450.zip
1 files changed, 7 insertions, 0 deletions
diff --git a/src/providers/ldap/ldap_common.h b/src/providers/ldap/ldap_common.h
index 3cbf3f600..9146da5a9 100644
--- a/src/providers/ldap/ldap_common.h
+++ b/src/providers/ldap/ldap_common.h
@@ -34,6 +34,10 @@
 
 #define SSS_LDAP_SRV_NAME "ldap"
 
+#define LDAP_STANDARD_URI "ldap://"
+#define LDAP_SSL_URI "ldaps://"
+#define LDAP_LDAPI_URI "ldapi://"
+
 /* a fd the child process would log into */
 extern int ldap_child_debug_fd;
 
@@ -155,4 +159,7 @@ errno_t list_missing_attrs(TALLOC_CTX *mem_ctx,
                            const char **expected_attrs,
                            struct sysdb_attrs *recvd_attrs,
                            char ***missing_attrs);
+
+bool sdap_is_secure_uri(const char *uri);
+
 #endif /* _LDAP_COMMON_H_ */
author	Stephen Gallagher <sgallagh@redhat.com>	2011-02-11 13:10:27 -0500
committer	Stephen Gallagher <sgallagh@redhat.com>	2011-02-15 07:42:14 -0500
commit	9ae3cdc58118884e3bac4e7702d3d0b23ba0e450 (patch)
tree	ae8075ccd301616f214879ad1a0af3ce26cff651 /src/providers/ldap/ldap_common.h
parent	480735cddc41159344b3e9f65b3e808fe44c82ce (diff)
download	sssd-9ae3cdc58118884e3bac4e7702d3d0b23ba0e450.tar.gz sssd-9ae3cdc58118884e3bac4e7702d3d0b23ba0e450.tar.xz sssd-9ae3cdc58118884e3bac4e7702d3d0b23ba0e450.zip