0ct0pu5/XBackBone
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Added LDAP Service account support for LDAP server that don't allow anon

Browse source
This commit is contained in:
Ben Tyger 2021-05-18 14:26:52 -04:00
parent 7e0e0db384
commit 8b333c935d
1 changed files with 10 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

10
app/Controllers/Auth/AuthController.php
View file

@ -45,6 +45,16 @@ abstract class AuthController extends Controller
ldap_set_option($server, LDAP_OPT_REFERRALS, 0);
ldap_set_option($server, LDAP_OPT_NETWORK_TIMEOUT, 10);
}
$serviceAccountFQDN= (array_key_exists('service_account_dn', $this->config['ldap'])) ?
$this->config['ldap']['service_account_dn'] : null;
if (is_string($serviceAccountFQDN)) {
if (ldap_bind($server,$serviceAccountFQDN,$this->config['ldap']['service_account_password']) === false) {
$this->logger->error("Bind with service account ($serviceAccountFQDN) failed.");
return false;
}
}
return $server;
}