Changeset - fcd4fb51526e
Parent rev.
Child rev.
[Not reviewed]
beta
0 1 0
Marcin Kuzminski - 15 years ago 2010-11-24 03:32:53
marcin@python-works.com
added debug message for ldap auth
1 file changed with 1 insertions and 0 deletions:
rhodecode/lib/auth.py
1
0 comments (0 inline, 0 general)
rhodecode/lib/auth.py
Show inline comments
 
@@ -89,48 +89,49 @@ def authfunc(environ, username, password
 
    user = user_model.get_by_username(username, cache=False)
 

			




	
	
	
		
 
    if user is not None and user.is_ldap is False:

			




	
	
	
		
 
        if user.active:

			




	
	
	
		
 

			




	
	
	
		
 
            if user.username == 'default' and user.active:

			




	
	
	
		
 
                log.info('user %s authenticated correctly', username)

			




	
	
	
		
 
                return True

			




	
	
	
		
 

			




	
	
	
		
 
            elif user.username == username and check_password(password, user.password):

			




	
	
	
		
 
                log.info('user %s authenticated correctly', username)

			




	
	
	
		
 
                return True

			




	
	
	
		
 
        else:

			




	
	
	
		
 
            log.error('user %s is disabled', username)

			




	
	
	
		
 

			




	
	
	
		
 

			




	
	
	
		
 
    else:

			




	
	
	
		
 

			




	
	
	
		
 
        #since ldap is searching in case insensitive check if this user is still

			




	
	
	
		
 
        #not in our system

			




	
	
	
		
 
        username = username.lower()

			




	
	
	
		
 
        user_obj = user_model.get_by_username(username, cache=False,

			




	
	
	
		
 
                                            case_insensitive=True)

			




	
	
	
		
 
        if user_obj is not None and user_obj.is_ldap is False:

			




	
	
	
		
 
            log.debug('this user already exists as non ldap')

			




	
	
	
		
 
            return False

			




	
	
	
		
 

			




	
	
	
		
 
        from rhodecode.model.settings import SettingsModel

			




	
	
	
		
 
        ldap_settings = SettingsModel().get_ldap_settings()

			




	
	
	
		
 

			




	
	
	
		
 
        #======================================================================

			




	
	
	
		
 
        # FALLBACK TO LDAP AUTH IN ENABLE                

			




	
	
	
		
 
        #======================================================================

			




	
	
	
		
 
        if ldap_settings.get('ldap_active', False):

			




	
	
	
		
 

			




	
	
	
		
 
            kwargs = {

			




	
	
	
		
 
                  'server':ldap_settings.get('ldap_host', ''),

			




	
	
	
		
 
                  'base_dn':ldap_settings.get('ldap_base_dn', ''),

			




	
	
	
		
 
                  'port':ldap_settings.get('ldap_port'),

			




	
	
	
		
 
                  'bind_dn':ldap_settings.get('ldap_dn_user'),

			




	
	
	
		
 
                  'bind_pass':ldap_settings.get('ldap_dn_pass'),

			




	
	
	
		
 
                  'use_ldaps':ldap_settings.get('ldap_ldaps'),

			




	
	
	
		
 
                  'ldap_version':3,

			




	
	
	
		
 
                  }

			




	
	
	
		
 
            log.debug('Checking for ldap authentication')

			




	
	
	
		
 
            try:

			




	
	
	
		
 
                aldap = AuthLdap(**kwargs)

			




	
	
	
		
 
                res = aldap.authenticate_ldap(username, password)

			




	
	
	
		
 

			




        

    



    


    



    



      

      





    
    0 comments (0 inline, 0 general)
    





    


  

  







  


    




    








    
        
    
    
        This site is powered by
            Kallithea 0.7.0,
        which is
        © 2010–2025 by various authors & licensed under GPLv3.