Added sanity check to determine if a bind user account is set. (#9340)

snipe · Mar 24, 2021 · 78cc47a · 78cc47a
1 parent b00413e
commit 78cc47a
Showing 1 changed file with 7 additions and 1 deletion.
diff --git a/app/Services/LdapAd.php b/app/Services/LdapAd.php
@@ -129,7 +129,13 @@ public function ldapLogin(string $username, string $password): User
  $login_username = $username;
  }
 
- if ($this->ldap->auth()->attempt($login_username, $password, true) === false) {
+ if ($this->ldapConfig['username'] && $this->ldapConfig['password']) {
+ $bind_as_user = false;
+ } else {
+ $bind_as_user = true;
+ }
+
+ if ($this->ldap->auth()->attempt($login_username, $password, $bind_as_user) === false) {
  throw new Exception('Unable to validate user credentials!');
  }