The SASL options are OpenLDAP specific.
LDAP_OPT_X_SASL_AUTHCID
Gets the SASL authentication identity; outvalue
must be a
char **
, its content needs to be freed by the caller using
ldap_memfree(3).
LDAP_OPT_X_SASL_AUTHZID
Gets the SASL authorization identity; outvalue
must be a
char **
, its content needs to be freed by the caller using
ldap_memfree(3).
LDAP_OPT_X_SASL_MAXBUFSIZE
Gets/sets SASL maximum buffer size; invalue
must be const
ber_len_t *
, while outvalue
must be ber_len_t *
. See also
LDAP_OPT_X_SASL_SECPROPS
.
LDAP_OPT_X_SASL_MECH
Gets the SASL mechanism; outvalue
must be a char **
, its
content needs to be freed by the caller using
ldap_memfree(3).
LDAP_OPT_X_SASL_MECHLIST
Gets the list of the available mechanisms, in form of a
NULL-terminated array of strings; outvalue
must be char
***
. The caller must not free or otherwise muck with it.
LDAP_OPT_X_SASL_NOCANON
Sets/gets the NOCANON flag. When unset, the hostname is
canonicalized. invalue
must be const int *
; its value
should either be LDAP_OPT_OFF
or LDAP_OPT_ON
. outvalue
must be int *
.
LDAP_OPT_X_SASL_REALM
Gets the SASL realm; outvalue
must be a char **
, its
content needs to be freed by the caller using
ldap_memfree(3).
LDAP_OPT_X_SASL_SECPROPS
Sets the SASL secprops; invalue
must be a char *
,
containing a comma-separated list of properties. Legal
values are: none
, nodict
, noplain
, noactive
, passcred
,
forwardsec
, noanonymous
, minssf=<minssf>
, maxssf=<maxssf>
,
maxbufsize=<maxbufsize>
.
LDAP_OPT_X_SASL_SSF
Gets the SASL SSF; outvalue
must be a ber_len_t *
.
LDAP_OPT_X_SASL_SSF_EXTERNAL
Sets the SASL SSF value related to an authentication
performed using an EXTERNAL mechanism; invalue
must be a
const ber_len_t *
.
LDAP_OPT_X_SASL_SSF_MAX
Gets/sets SASL maximum SSF; invalue
must be const
ber_len_t *
, while outvalue
must be ber_len_t *
. See also
LDAP_OPT_X_SASL_SECPROPS
.
LDAP_OPT_X_SASL_SSF_MIN
Gets/sets SASL minimum SSF; invalue
must be const
ber_len_t *
, while outvalue
must be ber_len_t *
. See also
LDAP_OPT_X_SASL_SECPROPS
.
LDAP_OPT_X_SASL_USERNAME
Gets the SASL username; outvalue
must be a char **
. Its
content needs to be freed by the caller using
ldap_memfree(3). LDAP_OPT_X_SASL_CBINDING
Sets/gets the
channel-binding type to use in SASL, one of
LDAP_OPT_X_SASL_CBINDING_NONE
(the default),
LDAP_OPT_X_SASL_CBINDING_TLS_UNIQUE
the "tls-unique" type
from RFC 5929. LDAP_OPT_X_SASL_CBINDING_TLS_ENDPOINT
the
"tls-server-end-point" from RFC 5929, compatible with
Windows. invalue
must be const int *
; outvalue
must be
int *
.