Home Explore Help
Sign In
mirrors
/
Radicale
mirror of https://github.com/Kozea/Radicale
1
0
Fork 0
Files Issues 0 Wiki
Browse Source

LDAP auth: infer 'ldap_security = tls' from the URL prefix: ldaps:// => LDAPS

LDAP URIs starting with the scheme 'ldaps' are - by definition - meant to use
LDAPS instead of plain LDAP: infer 'ldap_security' = "tls" if it is not set.
Peter Marschall 5 months ago
parent
7eb0c66512
commit
c58eef4bac
1 changed files with 4 additions and 0 deletions
Split View Show Diff Stats
  1. 4 0
      radicale/auth/ldap.py

+ 4 - 0
radicale/auth/ldap.py
View File 

@@ -118,6 +118,10 @@ class Auth(auth.BaseAuth):
 
         elif tmp == "OPTIONAL":
 
             self._ldap_ssl_verify_mode = ssl.CERT_OPTIONAL
 
 
+        if self._ldap_uri.lower().startswith("ldaps://") and self._ldap_security not in ("tls", "starttls"):
 
+            logger.info("Inferring 'ldap_security' = tls from 'ldap_uri' starting with 'ldaps://'")
 
+            self._ldap_security = "tls"
 
+
 
         logger.info("auth.ldap_uri             : %r" % self._ldap_uri)
 
         logger.info("auth.ldap_base            : %r" % self._ldap_base)
 
         logger.info("auth.ldap_reader_dn       : %r" % self._ldap_reader_dn)