From 834d92a47ba782b0f6cf609799864c4c73d44c5e Mon Sep 17 00:00:00 2001
From: Adam Strzelecki <ono@java.pl>
Date: Tue, 16 Feb 2016 12:33:16 +0100
Subject: LDAP: Fetch attributes in Bind DN context option

This is feature is workaround for #2628 (JumpCloud) and some other services
that allow LDAP search only under BindDN user account, but not allow any LDAP
search query in logged user DN context.

Such approach is an alternative to minimal permissions security pattern for
BindDN user.
---
 routers/admin/auths.go | 1 +
 1 file changed, 1 insertion(+)

(limited to 'routers')

diff --git a/routers/admin/auths.go b/routers/admin/auths.go
index 659b8fcf67..c519d5a7e0 100644
--- a/routers/admin/auths.go
+++ b/routers/admin/auths.go
@@ -81,6 +81,7 @@ func parseLDAPConfig(form auth.AuthenticationForm) *models.LDAPConfig {
 			AttributeName:     form.AttributeName,
 			AttributeSurname:  form.AttributeSurname,
 			AttributeMail:     form.AttributeMail,
+			AttributesInBind:  form.AttributesInBind,
 			Filter:            form.Filter,
 			AdminFilter:       form.AdminFilter,
 			Enabled:           true,
-- 
cgit v1.2.3