10 releases

0.4.3 Apr 20, 2024
0.4.2 Dec 23, 2023
0.4.1 May 1, 2023
0.4.0 Aug 19, 2022
0.1.1 May 31, 2022

#1907 in Network programming


Used in ldap-test-server

MIT/Apache

66KB
1.5K SLoC

Yet another LDAP client for Rust

Overview

This project aims to provide a minimal working LDAP client written in Rust focused on ergonomics, correctness and clean code. It uses tokio asynchronous runtime for network I/O and an excellent rasn crate for all ASN.1 goodness.

TLS connectivity is controlled by two mutually exclusive feature flags: tls-native-tls or tls-rustls. The default is to use tls-native-tls which uses the native-tls crate.

A minimal Kerberos support is provided via gssapi feature flag with the following limitations:

  • SASL protection is not supported for plain connections, TLS should be used for all communication
  • Channel binding is not supported

Roadmap

  • Simple bind with username and password
  • SASL EXTERNAL bind
  • Kerberos GSSAPI bind (SASL protection is not implemented, use TLS instead)
  • Plain, TLS and STARTTLS connections
  • Simple search and paged search via asynchronous streams
  • Documentation
  • rustls support via optional feature flag
  • Additional ProtocolOp client operations (add, modify, delete)
  • Additional extended operations

Usage

Please see the examples directory.

Alternatives

ldap3 is actively maintained and has currently more features (e.g. Kerberos support).

License

Licensed under MIT or Apache license (LICENSE-MIT or LICENSE-APACHE)

Dependencies

~16–49MB
~818K SLoC