directory-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From build...@apache.org
Subject svn commit: r1007587 - in /websites/staging/directory/trunk/content: ./ api/user-guide/2.2-binding-unbinding.html
Date Thu, 02 Mar 2017 19:35:57 GMT
Author: buildbot
Date: Thu Mar  2 19:35:57 2017
New Revision: 1007587

Log:
Staging update by buildbot for directory

Modified:
    websites/staging/directory/trunk/content/   (props changed)
    websites/staging/directory/trunk/content/api/user-guide/2.2-binding-unbinding.html

Propchange: websites/staging/directory/trunk/content/
------------------------------------------------------------------------------
--- cms:source-revision (original)
+++ cms:source-revision Thu Mar  2 19:35:57 2017
@@ -1 +1 @@
-1784453
+1785190

Modified: websites/staging/directory/trunk/content/api/user-guide/2.2-binding-unbinding.html
==============================================================================
--- websites/staging/directory/trunk/content/api/user-guide/2.2-binding-unbinding.html (original)
+++ websites/staging/directory/trunk/content/api/user-guide/2.2-binding-unbinding.html Thu
Mar  2 19:35:57 2017
@@ -185,7 +185,7 @@
 h2:hover > .headerlink, h3:hover > .headerlink, h1:hover > .headerlink, h6:hover
> .headerlink, h4:hover > .headerlink, h5:hover > .headerlink, dt:hover > .elementid-permalink
{ visibility: visible }</style>
 <h1 id="22-binding-and-unbinding">2.2 - Binding and unbinding<a class="headerlink"
href="#22-binding-and-unbinding" title="Permanent link">&para;</a></h1>
 <p>In <strong>LDAP</strong>, if one wants to access the data in the base,
the common way to do it is to bind to the server. However, it's important to understand that
binding is a different from connecting.</p>
-<p>Creating a connection to an <strong>LDAP</strong> server is opens a
socket between the client and the server. You must provide the address and the port in order
to do this. </p>
+<p>Creating a connection to an <strong>LDAP</strong> server opens a socket
between the client and the server. You must provide the address and the port in order to do
this. </p>
 <p>The <strong>bind</strong> operation, on the other hand, creates a <em>Session</em>
which will hold user information for the duration of the session. This information is limited,
but includes the user's credentials.</p>
 <p>But it's important to know that it's possible to bind anonymously, which doesn't
require a user or password, and still be able to send requests to the server (although the
server can forbid anonymous binds).</p>
 <p>Once the user has finished interacting with the server, they can unbind, destroying
the session held on the server. This operation does not close the connection, because, again
<em>bind != connection</em>!</p>
@@ -198,12 +198,15 @@ h2:hover > .headerlink, h3:hover > .head
 <p>The first one is based on a userid/password sent to the server, which verifies the
credentials are valid. It's also possible to proceed with an anonymous bind explicitly.</p>
 <p>The second type is more complicated, and is used whenever authentication with a
specific mechanism, like <strong>DIGEST-MD5</strong>, <strong>Kerberos</strong>
or certificate based is required.</p>
 <h3 id="simple-bind">Simple Bind<a class="headerlink" href="#simple-bind" title="Permanent
link">&para;</a></h3>
-<p>One can issue three kinds of simple binds:
-<em> <em>anonymous bind</em></em> <em>name/password bind</em>
-* <em>unauthenticated authentication bind</em></p>
+<p>One can issue three kinds of simple binds:</p>
+<ul>
+<li><em>anonymous bind</em></li>
+<li><em>name/password bind</em></li>
+<li><em>unauthenticated authentication bind</em></li>
+</ul>
 <p>The first one is the easiest, but depending on the server's configuration, will
be accepted or rejected (not all servers allow anonymous binds)</p>
 <p>Most of the time, the <em>bind</em> operation will not return anything.
You either get bound, or will receive an <em>LdapException</em> if an error occurs.</p>
-<p>Issuing an anonymous bind is simple, you neither provide a user or password:</p>
+<p>Issuing an anonymous bind is simple, you neither provide a user nor a password:</p>
 <div class="codehilite"><pre><span class="nd">@Test</span>
 <span class="kd">public</span> <span class="kt">void</span> <span
class="nf">testAnonymousBindRequest</span><span class="o">()</span> <span
class="kd">throws</span> <span class="n">Exception</span>
 <span class="o">{</span>
@@ -222,7 +225,7 @@ h2:hover > .headerlink, h3:hover > .head
 
 
 <blockquote>
-<p><strong>Note</strong> It's important to note that the user's name is
a <em><a href="6.9-dn.html">Dn</a></em>, not a simple name like 'John
doe"</p>
+<p><strong>Note</strong> It's important to note that the user's name is
a <em><a href="6.9-dn.html">Dn</a></em>, not a simple name like 'John
Doe"</p>
 </blockquote>
 <p>Last, not least, there is a quite unknown feature in <strong>LDAP</strong>
bind that allows you to issue a Bind request without providing a password. It's equivalent
to an anonymous bind, except that the server can log the user's name, thus being able to trace
what the user does. Servers might forbid such bind, and this will be the case if the server
disallow anonymous binds.</p>
 <p>Note that this kind of bind will be supported only if the server allows anonymous
binds. It's not supported by <em>ApacheDS</em>.</p>



Mime
View raw message