When the ldap is activated and well configured :
if the username does not exist in the ldap database and the the password is not filled, the connection is allowed by askbot
if the username exists and no password is filled, the connection is also allowed.
if the username exists and the password is filled and wrong, then the connection is refused (ldap error : invalid credentials
if the username exists and the password is well filled, the the connection is accepted.
It seems to be that ldap-python simple_bind_s method does not raised an exception included in ldap.LDAPError for the first two cases. I have just added a trace to confirm that in the fourth cases the method is called. The ldap-python doc does not give more details. I will try to investigate further next week. If you have any idea, let me know, I have a full test environment to investigate.
Create your Q&A site at askbot.com. Managed Askbot hosting at just $15/mo. Dedicated hosting, support contracts, consulting services.create your Q&A site
Asked: 2011-05-26 07:25:10 -0500
Seen: 109 times
Last updated: May 31 '11