projects
/
catagits/Catalyst-Authentication-Store-LDAP.git
/ blobdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
raw
Fix security issue. RT#81908
[catagits/Catalyst-Authentication-Store-LDAP.git]
/
lib
/
Catalyst
/
Authentication
/
Store
/
LDAP
/
Backend.pm
diff --git
a/lib/Catalyst/Authentication/Store/LDAP/Backend.pm
b/lib/Catalyst/Authentication/Store/LDAP/Backend.pm
index
a0be77a
..
7211e72
100644
(file)
--- a/
lib/Catalyst/Authentication/Store/LDAP/Backend.pm
+++ b/
lib/Catalyst/Authentication/Store/LDAP/Backend.pm
@@
-226,7
+226,8
@@
sub ldap_bind {
$self->_ldap_bind_anon($ldap);
}
else {
- if ($bindpw) {
+ # Don't fall back to unauthenticated bind when authenticating
+ if ($bindpw or $forauth eq 'forauth') {
my $mesg = $ldap->bind( $binddn, 'password' => $bindpw );
if ( $mesg->is_error ) {