ghenry has asked for the wisdom of the Perl Monks concerning the following question:
I'm developing a web gui with Dojo and Catalyst for contacts management. It's for the public directory servers that power the SureVoIP IM service and store your global and private contact list.
ldap.surevoip.co.uk is public now and I'm working on syncing in from LinkedIn, Google and Salesforce. You just point your phone, email etc. at the server and import/export vcards, or LDIF.
Anyway, problem is that on the initial login I do an LDAP bind over StartTLS for authenticating and then create the session. That's fine as the session ticks over until it expires. My problem scope is that any LDAP operations need a re-bind as the logged in user (the user DN is in the session, so that's OK), but I don't have the plaintext password to re-bind with. Should I save this? I can't save a hash as I need the plaintext one.
Fancy a email@example.com? Just ask!!!
|Replies are listed 'Best First'.|
Re: Advice for saving a plaintext password for LDAP re-binds using StartTLS
by 5mi11er (Deacon) on Aug 16, 2013 at 22:52 UTC
by ghenry (Vicar) on Aug 21, 2013 at 06:39 UTC