This project aims to provide a minimal working LDAP client written in Rust focused on ergonomics, correctness and clean code. It uses tokio asynchronous runtime for network I/O and an excellent rasn crate for all ASN.1 goodness.
TLS connectivity is controlled by two mutually exclusive feature flags: tls-native-tls or tls-rustls.
The default is to use tls-native-tls which uses the native-tls crate.
A minimal Kerberos support is provided via gssapi feature flag with the following limitations:
- SASL protection is not supported for plain connections, TLS should be used for all communication
- Channel binding is not supported
- Simple bind with username and password
- SASL EXTERNAL bind
- Kerberos GSSAPI bind (SASL protection is not implemented, use TLS instead)
- Plain, TLS and STARTTLS connections
- Simple search and paged search via asynchronous streams
- Documentation
-
rustlssupport via optional feature flag - Additional
ProtocolOpclient operations (add, modify, delete)
Please see the examples directory.
Licensed under MIT or Apache license (LICENSE-MIT or LICENSE-APACHE)
