+ - Document how to limit the attributes returned from the LDAP search
+
1.015 20 February 2015
- Escape special characters in user/role names
- Use the stored user credentials to look up roles
user_field => "uid",
user_filter => "(&(objectClass=posixAccount)(uid=%s))",
user_scope => "one", # or "sub" for Active Directory
- user_search_options => { deref => "always" },
+ user_search_options => {
+ deref => 'always',
+ attrs => [qw( distinguishedname name mail )],
+ },
user_results_filter => sub { return shift->pop_entry },
},
},
'user_field' => 'uid',
'user_search_options' => {
'deref' => 'always',
+ 'attrs' => [qw( distinguishedname name mail )],
},
'user_results_filter' => sub { return shift->pop_entry },
'entry_class' => 'MyApp::LDAP::Entry',