0ct0pu5/XBackBone
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Switched from ldap_get_attributes() to more reliable ldap_get_dn()

Browse source
This commit is contained in:
Ben Tyger 2021-05-19 09:43:01 -04:00
parent 46b20c4d97
commit 3c63025a15
1 changed files with 5 additions and 5 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

10
app/Controllers/Auth/AuthController.php
View file

@ -80,20 +80,20 @@ abstract class AuthController extends Controller
//Dynamic LDAP User Binding
if (@is_string($this->config['ldap']['search_filter'])) {
//Replace ???? with username
$searchFilter=str_replace('????', ldap_escape($username,null,LDAP_ESCAPE_FILTER), $this->config['ldap']['search_filter']);
$ldapAddributes=array ('dn');
$ldapSearchResp=ldap_search(
$searchFilter = str_replace('????', ldap_escape($username,null,LDAP_ESCAPE_FILTER), $this->config['ldap']['search_filter']);
$ldapAddributes = array ('dn');
$ldapSearchResp = ldap_search(
$server,
$this->config['ldap']['base_domain'],
$searchFilter,
$ldapAddributes
);
if (ldap_count_entries($server, $ldapSearchResp) !== 1 ) {
$this->logger->warn("$username not found or had multiple entries");
$this->logger->warn("LDAP search for $username not found or had multiple entries");
return null;
}
$ldapEntry = ldap_first_entry($server, $$ldapSearchResp);
$bindString=@ldap_get_values($server, $ldapEntry, 'dn');
$bindString = ldap_get_dn($server, $ldapEntry);
} else {