[tpop3d-discuss] RE: LDAP Authentication

Prune prune at lecentre.net
Wed, 18 Sep 2002 20:34:09 +0200


--------------060309030508070106010004
Content-Type: text/plain; charset=us-ascii; format=flowed
Content-Transfer-Encoding: 7bit

Hi,

as said chris, the search filter is the same as when you use ldapsearch. 
from the man page (with anonymous bind, may not work for you)  :
ldapsearch  -b "c=US" "(o=University*)"  description

which mean, give me the "description" attribute of envery entry 
containing the attribut "o" = "University*", starting from "c=US" in the DN.
do you understand that ?

for you, this will give :

ldapsearch  -b "o=mye-znet" "(uid=t_tran99)" mailMessageStore

this will work if you supply only 't_tran99' as login, and don't add the 
domain after.
the search filter can be more complicates, for example :   
 (&(uid=t_tran99)(dc=mye-znet.com))

so :     (&(uid=$(local_part))(dc=$(domain)))

I hope this will work

chris : am I right ?

thai : understand ?

Cheers,

Prune



Thai Tran wrote:

> Hello everyone,
>     If someone can help point me in the right direction regarding the 
> auth-ldap-filter.  At the moment I am not sure how tpop3d uses the 
> filter to manipulate the search or I am just to blind to see it from 
> the default filter.
>    
>     I am aware that the default search filter is 
> (mail=$(local_part)@$(domain).  If someone can explain to me exactly 
> how this is used and the results of using the default filter in a ldap 
> url format.
>  
> For example: If I'm logging in with t_tran99@mye-znet.com 
> <mailto:t_tran99@mye-znet.com> and my password, what would the end 
> result of the ldap url be, using the default filter?  I am assuming 
> this at the moment but tpop3d does use ldap urls to perform queries, 
> correct?
>  
> Thanks,
> Thai



--------------060309030508070106010004
Content-Type: text/html; charset=us-ascii
Content-Transfer-Encoding: 7bit

<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
  <title></title>
</head>
<body>
Hi,<br>
<br>
as said chris, the search filter is the same as when you use ldapsearch.
from the man page (with anonymous bind, may not work for you)&nbsp; :<br>
ldapsearch&nbsp; -b "c=US" "(o=University*)"&nbsp; description<br>
<br>
which mean, give me the "description" attribute of envery entry containing
the attribut "o" = "University*", starting from "c=US" in the DN.<br>
do you understand that ?<br>
<br>
for you, this will give : <br>
<br>
ldapsearch&nbsp; -b "o=mye-znet" "(uid=t_tran99)" mailMessageStore<br>
<br>
this will work if you supply only 't_tran99' as login, and don't add the
domain after.<br>
the search filter can be more complicates, for example : &nbsp; &nbsp;(&amp;(uid=t_tran99)(dc=mye-znet.com))<br>
<br>
so : &nbsp; &nbsp;&nbsp;(&amp;(uid=$(local_part))(dc=$(domain)))<br>
<br>
I hope this will work<br>
<br>
chris : am I right ?<br>
<br>
thai : understand ? <br>
<br>
Cheers,<br>
<br>
Prune<br>
<br>
<br>
<br>
Thai Tran wrote:<br>
<blockquote type="cite"
 cite="midIPELJBOKFFLIECKDHDBFIEGOCFAA.t_tran99@yahoo.com">  
  <meta http-equiv="Content-Type" content="text/html; ">
 
  <meta content="MSHTML 6.00.2800.1106" name="GENERATOR">
 
  <div><span class="472351517-18092002">Hello everyone,</span></div>
 
  <div><span class="472351517-18092002">&nbsp;&nbsp;&nbsp; If someone can help point  me
in the right direction regarding the auth-ldap-filter.&nbsp; At the moment I  am
not sure how tpop3d uses the filter to manipulate the search or I am just
to  blind to see it from the default filter.</span></div>
 
  <div><span class="472351517-18092002">&nbsp;&nbsp;&nbsp; </span></div>
 
  <div><span class="472351517-18092002">&nbsp;&nbsp;&nbsp; I am aware that the  default
search filter is (mail=$(local_part)@$(domain).&nbsp; If someone can  explain
to me exactly how this is used and the results of using the default  filter
in a ldap url format.</span></div>
 
  <div><span class="472351517-18092002"></span>&nbsp;</div>
 
  <div><span class="472351517-18092002">For example: If I'm logging in with
  <a href="mailto:t_tran99@mye-znet.com">t_tran99@mye-znet.com</a>&nbsp;and my
 password, what would the end result of the ldap url be, using the default
 filter?&nbsp; I am assuming this at the moment but tpop3d does use ldap urls
to  perform queries, correct?</span></div>
 
  <div><span class="472351517-18092002"></span>&nbsp;</div>
 
  <div><span class="472351517-18092002">Thanks,</span></div>
 
  <div><span class="472351517-18092002">Thai</span></div>
</blockquote>
<br>
</body>
</html>

--------------060309030508070106010004--