1Net::LDAP::Control::ProUxsyeArutCho(n3t)ributed Perl DocNuemte:n:tLaDtAiPo:n:Control::ProxyAuth(3)
2
3
4

NAME

6       Net::LDAP::Control::ProxyAuth - LDAPv3 Proxy Authentication control
7       object
8

SYNOPSIS

10        use Net::LDAP;
11        use Net::LDAP::Control::ProxyAuth;
12
13        $ldap = Net::LDAP->new( "ldap.mydomain.eg" );
14
15        $auth = Net::LDAP::Control::ProxyAuth->new( authzID => 'dn:cn=me,ou=people,o=myorg.com' );
16
17        @args = ( base     => "cn=subnets,cn=sites,cn=configuration,$BASE_DN",
18                  scope    => "subtree",
19                  filter   => "(objectClass=subnet)",
20                  callback => \&process_entry, # Call this sub for each entry
21                  control  => [ $auth ],
22        );
23
24        while(1) {
25          # Perform search
26          my $mesg = $ldap->search( @args );
27
28          # Only continue on LDAP_SUCCESS
29          $mesg->code and last;
30
31        }
32

DESCRIPTION

34       "Net::LDAP::Control::ProxyAuth" provides an interface for the creation
35       and manipulation of objects that represent the "proxyauthorisationCon‐
36       trol" as described by draft-weltman-ldapv3-proxy-XX.txt.
37

CONSTRUCTOR ARGUMENTS

39       In addition to the constructor arguments described in Net::LDAP::Con‐
40       trol the following are provided.
41
42       authzID
43           The authzID that is required. This is the identity we are request‐
44           ing operations to use
45
46       proxyDN
47           In older versions of draft-weltman-ldapv3-proxy-XX.txt the value in
48           the control and thus the constructor argument was a DN and was
49           called "proxyDN". It served the same purpose as "authzID" in recent
50           versions of "proxyauthorisationControl".
51
52       Please note: Unfortunately the OID and the encoding or the "proxyautho‐
53       risationControl" changed significantly in recent versions of
54       draft-weltman-ldapv3-proxy-XX.txt.  Net::LDAP::Control::ProxyAuth tries
55       to cope with that situation and changes the OID and encoding used
56       depending on the constructor argument.
57
58       With "proxyDN" as constructor argument the old OID and encoding are
59       used, while with "authzID" as constructor argument the new OID and
60       encoding are used.  Using this logic servers supporting either OID can
61       be handled correctly.
62

METHODS

64       As with Net::LDAP::Control each constructor argument described above is
65       also available as a method on the object which will return the current
66       value for the attribute if called without an argument, and set a new
67       value for the attribute if called with an argument.
68

SEE ALSO

70       Net::LDAP, Net::LDAP::Control,
71

AUTHOR

73       Olivier Dubois, Swift sa/nv based on Net::LDAP::Control::Page from Gra‐
74       ham Barr <gbarr@pobox.com>.  Peter Marschall <peter@adpm.de> added
75       authzID extensions based on ideas from Graham Barr <gbarr@pobox.com>.
76
77       Please report any bugs, or post any suggestions, to the perl-ldap mail‐
78       ing list <perl-ldap@perl.org>
79

81       Copyright (c) 2001-2004 Graham Barr. All rights reserved. This program
82       is free software; you can redistribute it and/or modify it under the
83       same terms as Perl itself.
84
85
86
87perl v5.8.8                       2007-02-10  Net::LDAP::Control::ProxyAuth(3)
Impressum