Home Explore Help
Sign In
mirrors
/
Radicale
mirror of https://github.com/Kozea/Radicale
1
0
Fork 0
Files Issues 0 Wiki
Browse Source

LDAP auth: warn if 'ldap_ssl_ca_file' is set without LDAP encryption

Peter Marschall 5 months ago
parent
73b77defe4
commit
b21549b998
1 changed files with 2 additions and 0 deletions
Split View Show Diff Stats
  1. 2 0
      radicale/auth/ldap.py

+ 2 - 0
radicale/auth/ldap.py
View File 

@@ -124,6 +124,8 @@ class Auth(auth.BaseAuth):
 
 
         if self._ldap_ssl_ca_file == "" and self._ldap_ssl_verify_mode != ssl.CERT_NONE and self._ldap_security in ("tls", "starttls"):
 
             logger.warning("Certificate verification not possible: 'ldap_ssl_ca_file' not set")
 
+        if self._ldap_ssl_ca_file and self._ldap_security not in ("tls", "starttls"):
 
+            logger.warning("Config setting 'ldap_ssl_ca_file' useless without encrypted LDAP connection")
 
 
         logger.info("auth.ldap_uri             : %r" % self._ldap_uri)
 
         logger.info("auth.ldap_base            : %r" % self._ldap_base)