Download
Browse source Changelog tiny-curl
Documentation
Project   Bug Bounty FAQ   Help us   Known bugs   TODO Protocols   CA bundle   HTTP Cookies   HTTP/2   SSL Certs Releases   Security   Version numbers   Vulnerabilities curl tool   man page   Tutorial   HTTP scripting Videos Who and Why
libcurl
ABI API Competitors Examples Features Mailing list Related libs Using libcurl Tutorial Testimonials
Get Help
curl-library curl-users IRC / chat Mailing lists Everything curl [book] Video presentations Report a bug Paid support
Development
Autobuilds Code review Code style Contribute Dashboard Deprecate Internals Release Notes Release Procedure Roadmap Run Tests Security Process Specifications Test curl
News
Changelog Release table
curl / Mailing Lists / curl-library / Single Mail
Buy commercial curl support from WolfSSL. We help you work out your issues, debug your libcurl applications, use the API, port to new platforms, add new features and more. With a team lead by the curl founder himself.

Re: LDAP URL with a userinfo part

From: Patrick Monnerat via curl-library <curl-library_at_lists.haxx.se>
Date: Mon, 13 Dec 2021 20:17:14 +0100

On 12/13/21 19:42, Daniel Stenberg via curl-library wrote:
> On Mon, 13 Dec 2021, Howard Chu via curl-library wrote:
>
>>> - Reject: before attempting connection.
>>
>> Probably this, since RFC 4516 doesn't specify that userinfo is valid
>> in an LDAP URL. RFC 4516 seems to assume that if authentication is
>> going to be done, it is configured elsewhere in a client and so
>> doesn't need to be part of URLs themselves.
>
> I agree. If the spec doesn't allow it and there's no history or other
> usage of this in other (well known) applications, then rejecting such
> URLs as early as possible seems like the right choice to me.
>
Thank you both for your replies. I will work in this direction.

Patrick 

-- 
Unsubscribe: https://lists.haxx.se/listinfo/curl-library
Etiquette:   https://curl.haxx.se/mail/etiquette.html
Received on 2021-12-13