/* * * Portions Copyright 1998 Sun Microsystems, Inc. All rights reserved. * Use is subject to license terms. * */ #pragma ident "%Z%%M% %I% %E% SMI" /* * Copyright (c) 1993 Regents of the University of Michigan. * All rights reserved. * * sbind.c */ #ifndef lint static char copyright[] = "@(#) Copyright (c) 1993 Regents of the University of Michigan.\nAll rights reserved.\n"; #endif #include #include #ifdef MACOS #include "macos.h" #endif /* MACOS */ #if !defined( MACOS ) && !defined( DOS ) #include #include #endif #include "lber.h" #include "ldap.h" #include "ldap-private.h" #include "ldap-int.h" BerElement * ldap_build_simple_bind_req(LDAP *ld, char *dn, char *passwd, LDAPControl **serverctrls) { /* * The bind request looks like this: * BindRequest ::= SEQUENCE { * version INTEGER, * name DistinguishedName, -- who * authentication CHOICE { * simple [0] OCTET STRING -- passwd * } * } * all wrapped up in an LDAPMessage sequence. */ BerElement *ber = NULL; if ( dn == NULL ) dn = ""; if ( passwd == NULL ) passwd = ""; if ( (ber = alloc_ber_with_options( ld )) == NULLBER ) { return (NULLBER); } /* fill it in */ if ( ber_printf( ber, "{it{ists}", ++ld->ld_msgid, LDAP_REQ_BIND, ld->ld_version, dn, LDAP_AUTH_SIMPLE, passwd ) == -1 ) { ld->ld_errno = LDAP_ENCODING_ERROR; ber_free( ber, 1 ); return( NULLBER ); } /* LDAPv3 */ /* Code controls if any */ if (serverctrls && serverctrls[0]) { if (ldap_controls_code(ber, serverctrls) != LDAP_SUCCESS){ ld->ld_errno = LDAP_ENCODING_ERROR; ber_free( ber, 1 ); return( NULLBER ); } } else if (ld->ld_srvctrls && ld->ld_srvctrls[0]) { /* Otherwise, is there any global server ctrls ? */ if (ldap_controls_code(ber, ld->ld_srvctrls) != LDAP_SUCCESS){ ld->ld_errno = LDAP_ENCODING_ERROR; ber_free( ber, 1 ); return( NULLBER ); } } if ( ber_printf( ber, "}" ) == -1 ) { ld->ld_errno = LDAP_ENCODING_ERROR; ber_free( ber, 1 ); return( NULLBER ); } return (ber); } /* * ldap_simple_bind - bind to the ldap server (and X.500). The dn and * password of the entry to which to bind are supplied. The message id * of the request initiated is returned. * * Example: * ldap_simple_bind( ld, "cn=manager, o=university of michigan, c=us", * "secret" ) */ int ldap_simple_bind( LDAP *ld, char *dn, char *passwd ) { BerElement *ber; int rv; #ifdef _REENTRANT LOCK_LDAP(ld); #endif Debug( LDAP_DEBUG_TRACE, catgets(slapdcat, 1, 240, "ldap_simple_bind\n"), 0, 0, 0 ); if ( dn == NULL ) dn = ""; if ( passwd == NULL ) passwd = ""; /* create a message to send */ if ( (ber = ldap_build_simple_bind_req( ld, dn, passwd, NULL )) == NULLBER ) { #ifdef _REENTRANT UNLOCK_LDAP(ld); #endif return( -1 ); } #ifndef NO_CACHE if ( ld->ld_cache != NULL ) { ldap_flush_cache( ld ); } #endif /* !NO_CACHE */ /* send the message */ rv = send_initial_request( ld, LDAP_REQ_BIND, dn, ber ); #ifdef _REENTRANT UNLOCK_LDAP(ld); #endif return ( rv ); } /* * ldap_simple_bind - bind to the ldap server (and X.500) using simple * authentication. The dn and password of the entry to which to bind are * supplied. LDAP_SUCCESS is returned upon success, the ldap error code * otherwise. * * Example: * ldap_simple_bind_s( ld, "cn=manager, o=university of michigan, c=us", * "secret" ) */ int ldap_simple_bind_s( LDAP *ld, char *dn, char *passwd ) { int msgid; LDAPMessage *result; Debug( LDAP_DEBUG_TRACE, catgets(slapdcat, 1, 241, "ldap_simple_bind_s\n"), 0, 0, 0 ); if ( (msgid = ldap_simple_bind( ld, dn, passwd )) == -1 ) return( ld->ld_errno ); if ( ldap_result( ld, msgid, 1, (struct timeval *) 0, &result ) == -1 ) return( ld->ld_errno ); /* ldap_result sets ld_errno */ return( ldap_result2error( ld, result, 1 ) ); }