mirrors
/
gitblit
mirror of https://github.com/gitblit/gitblit.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 43 Wiki Activity
Browse Source

Merged #41 "Warn on LDAP synchronization if the uid attribute is null/undefined"

tags/v1.5.0
James Moger 10 years ago
parent
90c354f576 ef4c45a4b1
commit
a27e682a64
2 changed files with 9 additions and 4 deletions
Split View Show Diff Stats
  1. 1
    0
      releases.moxie
  2. 8
    4
      src/main/java/com/gitblit/auth/LdapAuthProvider.java

+ 1
- 0
releases.moxie View File

@@ -16,6 +16,7 @@ r22: {
- Ensure the Lucene ticket index is updated on repository deletion.
changes:
- Specify the --dailyLogFile option for the Ubuntu and CentOS service scripts (issue-348)
- Improve logging for missing LDAP uid attribute when synchronizing (issue-394)
- The ticket close-on-push commit message regular expression is now configurable by a setting (issue-404)
- Redirect to summary page on edit repository (issue-405)
- Option to allow LDAP users to directly authenticate without performing LDAP searches (pr-162)

+ 8
- 4
src/main/java/com/gitblit/auth/LdapAuthProvider.java View File

@@ -119,8 +119,12 @@ public class LdapAuthProvider extends UsernamePasswordAuthenticationProvider {
final Map<String, UserModel> ldapUsers = new HashMap<String, UserModel>();

for (SearchResultEntry loggingInUser : result.getSearchEntries()) {

final String username = loggingInUser.getAttribute(uidAttribute).getValue();
Attribute uid = loggingInUser.getAttribute(uidAttribute);
if (uid == null) {
logger.error("Can not synchronize with LDAP, missing \"{}\" attribute", uidAttribute);
continue;
}
final String username = uid.getValue();
logger.debug("LDAP synchronizing: " + username);

UserModel user = userManager.getUserModel(username);
@@ -295,13 +299,13 @@ public class LdapAuthProvider extends UsernamePasswordAuthenticationProvider {
if (ldapConnection != null) {
try {
boolean alreadyAuthenticated = false;
String bindPattern = settings.getString(Keys.realm.ldap.bindpattern, "");
if (!StringUtils.isEmpty(bindPattern)) {
try {
String bindUser = StringUtils.replace(bindPattern, "${username}", escapeLDAPSearchFilter(simpleUsername));
ldapConnection.bind(bindUser, new String(password));
alreadyAuthenticated = true;
} catch (LDAPException e) {
return null;

Write Preview
Loading…
Cancel
Save