Document use of ldapurl with LDAP simple bind

From: Jacob Champion <jacob(dot)champion(at)enterprisedb(dot)com>
To: PostgreSQL Hackers <pgsql-hackers(at)postgresql(dot)org>
Subject: Document use of ldapurl with LDAP simple bind
Date: 2024-05-24 18:54:49
Message-ID: CAOYmi+nyg9gE0LeP=xQ3AgyQGR=5ZZMkVVbWd0uR8XQmg_dd5Q@mail.gmail.com
Views: Raw Message | Whole Thread | Download mbox | Resend email
Thread:
Lists: pgsql-hackers

Hi all,

Our documentation implies that the ldapurl setting in pg_hba is used
for search+bind mode only. It was pointed out to me recently that this
is not true, and if you're dealing with simple bind on a non-standard
scheme or port, then ldapurl makes the HBA easier to read:

... ldap ldapurl="ldaps://ldap.example.net:49151" ldapprefix="cn="
ldapsuffix=", dc=example, dc=net"

0001 tries to document this helpful behavior a little better, and 0002
pins it with a test. WDYT?

Thanks,
--Jacob

Attachment Content-Type Size
0001-docs-explain-how-to-use-ldapurl-with-simple-bind.patch application/octet-stream 2.6 KB
0002-ldap-test-ldapurl-with-simple-bind.patch application/octet-stream 1.4 KB

Responses

Browse pgsql-hackers by date

  From Date Subject
Next Message Tom Lane 2024-05-24 18:57:32 Re: DROP OWNED BY fails to clean out pg_init_privs grants
Previous Message Robert Haas 2024-05-24 18:47:00 Re: apply_scanjoin_target_to_paths and partitionwise join