[Tickets #6155] Provides non-anonymous LDAP bind for DN searching
bugs at horde.org
bugs at horde.org
Sat Jan 26 16:26:17 UTC 2008
DO NOT REPLY TO THIS MESSAGE. THIS EMAIL ADDRESS IS NOT MONITORED.
Ticket URL: http://bugs.horde.org/ticket/?id=6155
-----------------------------------------------------------------------
Ticket | 6155
Created By | stephens at ameslab.gov
Summary | Provides non-anonymous LDAP bind for DN searching
Queue | Vacation
Version | 3.0.1
Type | Enhancement
State | New
Priority | 2. Medium
Milestone |
Patch |
Owners |
+New Attachment | vacation-3.0.1-no-anon-search.patch.txt
-----------------------------------------------------------------------
stephens at ameslab.gov (2008-01-26 11:26) wrote:
Our security policy on the LDAP directory we use for email does not permit
anonymous binds. This conflicts with apparent assumptions in the SORK
Vacation LDAP driver
Attached is a tested and relatively straightforward patch for the SORK
module
vacation-h3-3.0.1 that provides the following features:
* A non-anonymous bind for searching a user DN in the _lookupdn() method,
while at the same performing the LDAP attribute changes while bound as
the currently logged-in user's DN.
* A boolean module configuration variable to control activation of this
DN
search mode. Setting this variable value to FALSE was tested to
correctly
revert to the unpatched logic for the binddn setting.
* Debugging output now shows what DN, if any, was used to bind with to
perform the search in _lookupdn().
After this patch is applied, it is necessary to regenerate a new conf.php
module configuration file.
More information about the bugs
mailing list