Changeset - 8e10ce55531d
Parent rev.
Child rev.
[Not reviewed]
beta
0 1 0
Marcin Kuzminski - 13 years ago 2012-08-02 17:09:55
marcin@python-works.com
Grafted from: 43f6f45d81c6
ldap requires only string attributes, fixes #435 ldap-does-not-work-with-non-latin-symbols
1 file changed with 5 insertions and 4 deletions:
rhodecode/lib/auth_ldap.py
5
4
0 comments (0 inline, 0 general)
rhodecode/lib/auth_ldap.py
Show inline comments
 
@@ -18,24 +18,25 @@
 
# This program is distributed in the hope that it will be useful,
 
# but WITHOUT ANY WARRANTY; without even the implied warranty of
 
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 
# GNU General Public License for more details.
 
#
 
# You should have received a copy of the GNU General Public License
 
# along with this program.  If not, see <http://www.gnu.org/licenses/>.
 

			




	
	
	
		
 
import logging

			




	
	
	
		
 

			




	
	
	
		
 
from rhodecode.lib.exceptions import LdapConnectionError, LdapUsernameError, \

			




	
	
	
		
 
    LdapPasswordError

			




	
	
	
		
 
from rhodecode.lib.utils2 import safe_str

			




	
	
	
		
 

			




	
	
	
		
 
log = logging.getLogger(__name__)

			




	
	
	
		
 

			




	
	
	
		
 

			




	
	
	
		
 
try:

			




	
	
	
		
 
    import ldap

			




	
	
	
		
 
except ImportError:

			




	
	
	
		
 
    # means that python-ldap is not installed

			




	
	
	
		
 
    pass

			




	
	
	
		
 

			




	
	
	
		
 

			




	
	
	
		
 
class AuthLdap(object):

			




	
	
		
 
@@ -51,33 +52,33 @@ class AuthLdap(object):

			




	
	
	
		
 

			




	
	
	
		
 
        if self.TLS_KIND == 'LDAPS':

			




	
	
	
		
 
            port = port or 689

			




	
	
	
		
 
            ldap_server_type = ldap_server_type + 's'

			




	
	
	
		
 

			




	
	
	
		
 
        OPT_X_TLS_DEMAND = 2

			




	
	
	
		
 
        self.TLS_REQCERT = getattr(ldap, 'OPT_X_TLS_%s' % tls_reqcert,

			




	
	
	
		
 
                                   OPT_X_TLS_DEMAND)

			




	
	
	
		
 
        self.LDAP_SERVER_ADDRESS = server

			




	
	
	
		
 
        self.LDAP_SERVER_PORT = port

			




	
	
	
		
 

			




	
	
	
		
 
        # USE FOR READ ONLY BIND TO LDAP SERVER

			




	
	
	
		
 
        self.LDAP_BIND_DN = bind_dn

			




	
	
	
		
 
        self.LDAP_BIND_PASS = bind_pass

			




	
	
	
		
 
        self.LDAP_BIND_DN = safe_str(bind_dn)

			




	
	
	
		
 
        self.LDAP_BIND_PASS = safe_str(bind_pass)

			




	
	
	
		
 

			




	
	
	
		
 
        self.LDAP_SERVER = "%s://%s:%s" % (ldap_server_type,

			




	
	
	
		
 
                                           self.LDAP_SERVER_ADDRESS,

			




	
	
	
		
 
                                           self.LDAP_SERVER_PORT)

			




	
	
	
		
 

			




	
	
	
		
 
        self.BASE_DN = base_dn

			




	
	
	
		
 
        self.LDAP_FILTER = ldap_filter

			




	
	
	
		
 
        self.BASE_DN = safe_str(base_dn)

			




	
	
	
		
 
        self.LDAP_FILTER = safe_str(ldap_filter)

			




	
	
	
		
 
        self.SEARCH_SCOPE = getattr(ldap, 'SCOPE_%s' % search_scope)

			




	
	
	
		
 
        self.attr_login = attr_login

			




	
	
	
		
 

			




	
	
	
		
 
    def authenticate_ldap(self, username, password):

			




	
	
	
		
 
        """

			




	
	
	
		
 
        Authenticate a user via LDAP and return his/her LDAP properties.

			




	
	
	
		
 

			




	
	
	
		
 
        Raises AuthenticationError if the credentials are rejected, or

			




	
	
	
		
 
        EnvironmentError if the LDAP server can't be reached.

			




	
	
	
		
 

			




	
	
	
		
 
        :param username: username

			




	
	
	
		
 
        :param password: password

			




        

    



    


    



    



      

      





    
    0 comments (0 inline, 0 general)
    





    


  

  







  


    




    








    
        
    
    
        This site is powered by
            Kallithea 0.7.0,
        which is
        © 2010–2025 by various authors & licensed under GPLv3.