maxmustermann/minio
1
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity

Bind to lookup user after user auth to lookup ldap groups (#11357)

Browse source
This commit is contained in:
Aditya Manthramurthy 2021-01-27 17:31:21 -08:00 committed by GitHub
parent fd3f02637a
commit e79829b5b3
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 5 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

5
cmd/config/identity/ldap/config.go
View file

@ -283,6 +283,11 @@ func (l *Config) Bind(username, password string) (string, []string, error) {
errRet := fmt.Errorf("LDAP auth failed for DN %s: %v", bindDN, err)
return "", nil, errRet
}
// Bind to the lookup user account again to perform group search.
if err = l.lookupBind(conn); err != nil {
return "", nil, err
}
} else {
// Verify login credentials by checking the username formats.
bindDN, err = l.usernameFormatsBind(conn, username, password)