r27882@omni (orig r9910): t0m | 2009-04-28 13:35:52 +0100
Initial idea - make the user class instance have a closure which when called will retrieve an LDAP connection bound as the user, not so pleasant, but better than saving the password in the user object in plaintext..
our $VERSION = '0.1005';
-BEGIN { __PACKAGE__->mk_accessors(qw/user store/) }
+BEGIN { __PACKAGE__->mk_accessors(qw/user store _ldap_connection/) }
use overload '""' => sub { shift->stringify }, fallback => 1;
'forauth' );
if ( defined($ldap) ) {
if ($self->store->role_search_as_user) {
+ # FIXME - This can be removed and made to use the code below..
# Have to do the role lookup _now_, as this is the only time
# that we have the user's password/ldap bind..
$self->roles($ldap);
}
+ # Stash a closure which can be used to retrieve the connection in the users context later.
+ $self->_ldap_connection( sub { $self->store->ldap_bind( undef, $self->ldap_entry->dn, $password ) } );
return 1;
}
else {