+ - Document how to limit the attributes returned from the LDAP search
+ - Add persist_in_session config option to allow storing of user and its
+ roles in the session without hitting the LDAP store on each request
+ - fix use_roles enabled if explicitly disabled
+
+1.015 20 February 2015
- Escape special characters in user/role names
+ - Use the stored user credentials to look up roles
+ - Split credential checking into a separate method from generic binding
1.014 26 April 2013
- Don't fall back to unauthenticated bind when authenticating