76 lines
1.2 KiB
Plaintext
76 lines
1.2 KiB
Plaintext
include::../common/rationale.adoc[]
|
|
|
|
== Why is this an issue?
|
|
|
|
include::../common/description.adoc[]
|
|
|
|
=== What is the potential impact?
|
|
|
|
include::../common/impact.adoc[]
|
|
|
|
== How to fix it
|
|
|
|
=== Code examples
|
|
|
|
include::../common/fix/code-rationale.adoc[]
|
|
|
|
==== Noncompliant code example
|
|
|
|
[source,php,diff-id=1,diff-type=noncompliant]
|
|
----
|
|
$ldapconn = ldap_connect("ldap.example.com");
|
|
|
|
if ($ldapconn) {
|
|
$ldapbind = ldap_bind($ldapconn); // Noncompliant
|
|
}
|
|
----
|
|
|
|
|
|
==== Compliant solution
|
|
|
|
[source,php,diff-id=1,diff-type=compliant]
|
|
----
|
|
$ldaprdn = 'uname';
|
|
$ldappass = 'password';
|
|
|
|
$ldapconn = ldap_connect("ldap.example.com");
|
|
|
|
if ($ldapconn) {
|
|
$ldapbind = ldap_bind($ldapconn, $ldaprdn, $ldappass); // Compliant
|
|
}
|
|
----
|
|
|
|
//=== How does this work?
|
|
|
|
//=== Pitfalls
|
|
|
|
//=== Going the extra mile
|
|
|
|
|
|
== Resources
|
|
//=== Documentation
|
|
|
|
include::../common/resources/documentation.adoc[]
|
|
|
|
//=== Articles & blog posts
|
|
//=== Conference presentations
|
|
//=== Standards
|
|
|
|
include::../common/resources/standards.adoc[]
|
|
|
|
//=== Benchmarks
|
|
|
|
ifdef::env-github,rspecator-view[]
|
|
|
|
'''
|
|
== Implementation Specification
|
|
(visible only on this page)
|
|
|
|
=== Message
|
|
|
|
Provide username and password to authenticate the connection.
|
|
|
|
|
|
include::../highlighting.adoc[]
|
|
|
|
endif::env-github,rspecator-view[] |