lucaspalomodevelop/core
1
0
Fork 0
mirror of https://github.com/lucaspalomodevelop/core.git synced 2026-03-15 09:04:39 +00:00
Code Issues Packages Projects Releases Wiki Activity

(ldap) disable anonymous binds

Browse Source
This commit is contained in:
Ad Schellevis 2017-02-23 23:30:06 +01:00
parent 77f3cfa87e
commit 7410822082
1 changed files with 4 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
src/opnsense/mvc/app/library/OPNsense/Auth/LDAP.php
View File

@ -369,7 +369,10 @@ class LDAP extends Base implements IAuthConnector
{
// todo: implement SSL parts (legacy : ldap_setup_caenv)
// authenticate user
if (array_key_exists($username, $this->userDNmap)) {
if (empty($password)) {
// prevent anonymous bind
return false;
} elseif (array_key_exists($username, $this->userDNmap)) {
// we can map $username to distinguished name, just feed to connect
$ldap_is_connected = $this->connect($this->ldapBindURL, $this->userDNmap[$username], $password);
return $ldap_is_connected;