Knah-Tsaeb/MyShaarli
Knah-Tsaeb/MyShaarli
1
0
Fork 0
Code Issues Pull requests Releases Wiki Activity

LDAP - Force protocol LDAPv3

Browse source 
On Linux, php-ldap seems to rely on a library which still uses deprecated LDAPv2 as default version,
causing authentication issues.

See: https://stackoverflow.com/a/48238224/1484919
This commit is contained in:
ArthurHoaro 2020-06-25 16:18:25 +02:00
parent a69cfe0dd2
commit 8694e8411b
1 changed files with 11 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

14
application/security/LoginManager.php
View file

@ -204,12 +204,20 @@ public function checkCredentialsFromLocalConfig($login, $password) {
*/ */
public function checkCredentialsFromLdap($login, $password, $connect = null, $bind = null) public function checkCredentialsFromLdap($login, $password, $connect = null, $bind = null)
{ {
$connect = $connect ?? function($host) { return ldap_connect($host); }; $connect = $connect ?? function($host) {
$bind = $bind ?? function($handle, $dn, $password) { return ldap_bind($handle, $dn, $password); }; $resource = ldap_connect($host);
ldap_set_option($resource, LDAP_OPT_PROTOCOL_VERSION, 3);
return $resource;
};
$bind = $bind ?? function($handle, $dn, $password) {
return ldap_bind($handle, $dn, $password);
};
return $bind( return $bind(
$connect($this->configManager->get('ldap.host')), $connect($this->configManager->get('ldap.host')),
sprintf($this->configManager->get('ldap.dn'), $login), sprintf($this->configManager->get('ldap.dn'), $login),
$password $password
); );
} }