Crate ldap_rs

source · [−]

Expand description

Yet another LDAP client for Rust

Overview

This project aims to provide a minimal working LDAP client written in Rust focused on ergonomics, correctness and clean code. It uses tokio asynchronous runtime for network I/O and an excellent rasn crate for all ASN.1 goodness.

TLS connectivity is controlled by two mutually exclusive feature flags: tls-native-tls or tls-rustls. The default is to use tls-native-tls which uses the native-tls crate.

A minimal Kerberos support is provided via gssapi feature flag with the following limitations:

SASL protection is not supported for plain connections, TLS should be used for all communication
Channel binding is not supported

Roadmap

Simple bind with username and password
SASL EXTERNAL bind
Kerberos GSSAPI bind (SASL protection is not implemented, use TLS instead)
Plain, TLS and STARTTLS connections
Simple search and paged search via asynchronous streams
Documentation
rustls support via optional feature flag
Additional ProtocolOp client operations (add, modify, delete)
Additional extended operations

Usage

Please see the examples directory.

Alternatives

ldap3 is actively maintained and has currently more features (e.g. Kerberos support).

License

Licensed under MIT or Apache license (LICENSE-MIT or LICENSE-APACHE)

Re-exports

pub use bytes;

pub use rasn_ldap;

pub use client::*;

pub use model::*;

pub use options::*;

pub use request::*;

Modules

Low-level LDAP channel operations

LDAP client module

LDAP controls

LDAP errors

Data structures

OID definitions

LDAP connection options

LDAP request