Merge remote branch 'gitorious/1.0.x' into 1.0.x
This commit is contained in:
commit
829a017a5d
|
@ -144,6 +144,12 @@ class LdapCommon
|
||||||
if(!$entry){
|
if(!$entry){
|
||||||
return false;
|
return false;
|
||||||
}else{
|
}else{
|
||||||
|
if(empty($password)) {
|
||||||
|
//NET_LDAP2 will do an anonymous bind if bindpw is not set / empty string
|
||||||
|
//which causes all login attempts that involve a blank password to appear
|
||||||
|
//to succeed. Which is obviously not good.
|
||||||
|
return false;
|
||||||
|
}
|
||||||
$config = $this->get_ldap_config();
|
$config = $this->get_ldap_config();
|
||||||
$config['binddn']=$entry->dn();
|
$config['binddn']=$entry->dn();
|
||||||
$config['bindpw']=$password;
|
$config['bindpw']=$password;
|
||||||
|
|
Loading…
Reference in New Issue
Block a user