jannik/grav-plugin-login-ldap
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Compare commits

base: jannik:feature/search-bind-and-fixes
Branches Tags
jannik:develop jannik:feature/search-bind-and-fixes
..
compare: jannik:55a1efcb4ef15472e3275ae3ba5241e21bba406f
Branches Tags
jannik:feature/search-bind-and-fixes jannik:develop

1 Commits
feature/se ... 55a1efcb4e

Author SHA1 Message Date
Jannik Radix
55a1efcb4e Add search bind support, fix group_identifier typo, fix gidNumber query 
- Add search_bind_enabled/search_bind_dn/search_bind_password config
- Support both group_indentifier (original typo) and group_identifier
- Skip gidNumber query when attribute is empty
- Use searchLdap for all search/group queries
 2026-02-24 22:03:14 +01:00
2 changed files with 3 additions and 3 deletions
Expand all files Collapse all files

2
blueprints.yaml
View File

@@ -1,5 +1,5 @@
name: Login LDAP name: Login LDAP
version: 1.1.0 version: 1.2.0
description: Allows for Grav user authentication against an LDAP Server such as OpenLDAP or ActiveDirectory description: Allows for Grav user authentication against an LDAP Server such as OpenLDAP or ActiveDirectory
icon: user-circle-o icon: user-circle-o
author: author:

4
login-ldap.php
View File

@@ -98,7 +98,7 @@ class LoginLDAPPlugin extends Plugin
$opt_referrals = $this->config->get('plugins.login-ldap.opt_referrals'); $opt_referrals = $this->config->get('plugins.login-ldap.opt_referrals');
$blacklist = $this->config->get('plugins.login-ldap.blacklist_ldap_fields', []); $blacklist = $this->config->get('plugins.login-ldap.blacklist_ldap_fields', []);
// Dedicated search bind account (for when regular users lack search permissions) // Alternate search user (for when regular users lack search permissions)
$search_bind_enabled = $this->config->get('plugins.login-ldap.search_bind_enabled', false); $search_bind_enabled = $this->config->get('plugins.login-ldap.search_bind_enabled', false);
$search_bind_dn = $this->config->get('plugins.login-ldap.search_bind_dn'); $search_bind_dn = $this->config->get('plugins.login-ldap.search_bind_dn');
$search_bind_password = $this->config->get('plugins.login-ldap.search_bind_password'); $search_bind_password = $this->config->get('plugins.login-ldap.search_bind_password');
@@ -139,7 +139,7 @@ class LoginLDAPPlugin extends Plugin
// Try to login via LDAP // Try to login via LDAP
$ldap->bind($username, $credentials['password']); $ldap->bind($username, $credentials['password']);
// Set up search LDAP connection (use dedicated bind if configured) // Set up search LDAP connection (use separate bind if configured)
if ($search_bind_enabled && $search_bind_dn) { if ($search_bind_enabled && $search_bind_dn) {
/** @var Ldap $searchLdap */ /** @var Ldap $searchLdap */
$searchLdap = Ldap::create('ext_ldap', $ldap_config); $searchLdap = Ldap::create('ext_ldap', $ldap_config);