doc-en icon indicating copy to clipboard operation
doc-en copied to clipboard
verified publisher icon php

Add LDAP constants

Open haszi opened this issue 1 year ago • 3 comments

I did not write any descriptions for the peer certificate checking and CRL evaluation strategy constants as I could not find any references discussing these in detail.

Peer certificate checking strategies: LDAP_OPT_X_TLS_ALLOW LDAP_OPT_X_TLS_DEMAND LDAP_OPT_X_TLS_HARD LDAP_OPT_X_TLS_NEVER LDAP_OPT_X_TLS_TRY

CRL evaluation strategies: LDAP_OPT_X_TLS_CRL_ALL LDAP_OPT_X_TLS_CRL_NONE LDAP_OPT_X_TLS_CRL_PEER

haszi avatar Jun 29 '24 18:06 haszi

Maybe @MCMic can provide some desriptions?

Girgias avatar Jul 07 '24 14:07 Girgias

I've found this page where it is suggested that the TLS_REQCERT (and presumably the TLS_CRLCHECK) sections of this manpage are what we're looking for here. Unfortunately I don't know enough about LDAP to be sure.

haszi avatar Jul 08 '24 19:07 haszi

I'll wait a bit longer, if @MCMic doesn't reply we'll merge as is.

Girgias avatar Jul 09 '24 15:07 Girgias

I've read up some more on LDAP and added the descriptions for peer certificate and CRL evaluation strategies.

References:

  • client (TLS_REQCERT and TLS_CRLCHECK)
  • server (TLSVerifyClient and TLSCRLCheck)

haszi avatar Jul 28 '24 14:07 haszi

@Girgias Do you think we can merge it now? If all LDAP constants are going to be documented then only ~170 globals constants remain undocumented (on global constant pages at least). That's brilliant work! 👏

kocsismate avatar Aug 01 '24 08:08 kocsismate

I'll wait a bit longer, if @MCMic doesn't reply we'll merge as is.

err: timeout ^^so i'm merging it

kocsismate avatar Aug 21 '24 20:08 kocsismate

Sorry, I've left docs on the way side to deal with other stuff that I found more enjoyable for a bit.

Girgias avatar Aug 25 '24 21:08 Girgias

Sorry about not responding here :bow: I do not know much about these options.

MCMic avatar Nov 09 '24 14:11 MCMic