mirrors/lldap
1
0
Fork 0
mirror of https://github.com/lldap/lldap.git synced 2024-11-24 08:45:08 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

server: detect anonymous binds and return a correct error
Some checks failed
Rust / pre_job (push) Has been cancelled
Details
Rust / cargo test (push) Has been cancelled
Details
Rust / cargo clippy (push) Has been cancelled
Details
Rust / cargo fmt (push) Has been cancelled
Details
Rust / Code coverage (push) Has been cancelled
Details

Browse source
This commit is contained in:
Valentin Tolmer 2024-09-11 22:15:06 +02:00 committed by nitnelave
parent 01f97f5ed4
commit 10a820f2a2
1 changed files with 6 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
server/src/infra/ldap_handler.rs
View file

@ -263,6 +263,12 @@ impl<Backend: BackendHandler + LoginHandler + OpaqueHandler> LdapHandler<Backend
#[instrument(skip_all, level = "debug", fields(dn = %request.dn))]
pub async fn do_bind(&mut self, request: &LdapBindRequest) -> (LdapResultCode, String) {
if request.dn.is_empty() {
return (
LdapResultCode::InappropriateAuthentication,
"Anonymous bind not allowed".to_string(),
);
}
let user_id = match get_user_id_from_distinguished_name(
&request.dn.to_ascii_lowercase(),
&self.ldap_info.base_dn,