summaryrefslogtreecommitdiff
path: root/program/include/rcube_ldap.php
diff options
context:
space:
mode:
authoralecpl <alec@alec.pl>2011-11-30 13:10:45 +0000
committeralecpl <alec@alec.pl>2011-11-30 13:10:45 +0000
commit2d08ec91ca8fb429da389b3107f3982565e8ca3b (patch)
treee8130c146cb003571bde3cb98daa0a5ddfc7faa1 /program/include/rcube_ldap.php
parent5587b34cfa5d04fec8e009288cabd0ffdbf39413 (diff)
- Add possibility to do LDAP bind before searching for bind DN.
In deployments where anonymous binds to and/or searches on an LDAP tree are not allowed, and where the LDAP address book(s) have been configured to use the user-specific bind credentials, rcube_ldap.php needs to bind using service credentials in order to be able to find the user's bind dn.
Diffstat (limited to 'program/include/rcube_ldap.php')
-rw-r--r--program/include/rcube_ldap.php4
1 files changed, 4 insertions, 0 deletions
diff --git a/program/include/rcube_ldap.php b/program/include/rcube_ldap.php
index 58e2ca921..4d65bfa7a 100644
--- a/program/include/rcube_ldap.php
+++ b/program/include/rcube_ldap.php
@@ -236,6 +236,10 @@ class rcube_ldap extends rcube_addressbook
$replaces = array('%dn' => '', '%dc' => $dc, '%d' => $d, '%fu' => $fu, '%u' => $u);
if ($this->prop['search_base_dn'] && $this->prop['search_filter']) {
+ if (!empty$this->prop['search_bind_dn']) && !empty($this->prop['search_bind_pw'])) {
+ $this->bind($this->prop['search_bind_dn'], $this->prop['search_bind_pw']);
+ }
+
// Search for the dn to use to authenticate
$this->prop['search_base_dn'] = strtr($this->prop['search_base_dn'], $replaces);
$this->prop['search_filter'] = strtr($this->prop['search_filter'], $replaces);