Birger Toedtmann schrieb am Wed, Apr 10, 2002 at 10:31:42AM +0200: [...] > storing user passwords), LDAP is. So how do we get these toys together > if one > > 1. is going to protect user information based on "by self write" - you > first have to see what "self" is! - and > > 2. has, to faciliate 1., authenticate someone based on user information > > which will always result in a request loop? We simply don't. At this > point the separation of a > > user information database > > and a > > authentication mechanism framework > > simply does not work because of overloaded interdependencies. A solution? > I don't know exactly. Either merge those two or find a workaround I guess.
One workaround would be: - SASL requests user information from LDAP to authenticate someone - LDAP itself wants to authenticate this request via SASL - SASL *this time* doesn't request additional information from LDAP as it remembered that this is an "intra-authentication" request. Birger
