Merge remote-tracking branch 'upstream/master' into ldap_group_security

Conflicts: app/models.py config_template.py
2025-07-02 04:16:19 +00:00 · 2016-04-13 09:56:46 -06:00
parent 5914c3cc86 8f8b26266b
commit 942ca47103
6 changed files with 33 additions and 8 deletions
--- a/app/models.py
+++ b/app/models.py
@ -19,10 +19,18 @@ LDAP_USERNAME = app.config['LDAP_USERNAME']
 LDAP_PASSWORD = app.config['LDAP_PASSWORD']
 LDAP_SEARCH_BASE = app.config['LDAP_SEARCH_BASE']
 LDAP_TYPE = app.config['LDAP_TYPE']
-LDAP_GROUP_SECURITY = app.config['LDAP_GROUP_SECURITY']
-if LDAP_GROUP_SECURITY == True:
-    LDAP_ADMIN_GROUP = app.config['LDAP_ADMIN_GROUP']
-    LDAP_USER_GROUP = app.config['LDAP_USER_GROUP']
+if 'LDAP_TYPE' in app.config.keys():
+    LDAP_URI = app.config['LDAP_URI']
+    LDAP_USERNAME = app.config['LDAP_USERNAME']
+    LDAP_PASSWORD = app.config['LDAP_PASSWORD']
+    LDAP_SEARCH_BASE = app.config['LDAP_SEARCH_BASE']
+    LDAP_TYPE = app.config['LDAP_TYPE']
+    LDAP_GROUP_SECURITY = app.config['LDAP_GROUP_SECURITY']
+    if LDAP_GROUP_SECURITY == True:
+        LDAP_ADMIN_GROUP = app.config['LDAP_ADMIN_GROUP']
+        LDAP_USER_GROUP = app.config['LDAP_USER_GROUP']
+else:
+    LDAP_TYPE = False

 PDNS_STATS_URL = app.config['PDNS_STATS_URL']
 PDNS_API_KEY = app.config['PDNS_API_KEY']
@ -151,6 +159,10 @@ class User(db.Model):
                return False

        elif method == 'LDAP':
+            if not LDAP_TYPE:
+                logging.error('LDAP authentication is disabled')
+                return False
+
            if LDAP_TYPE == 'ldap':
              searchFilter = "cn=%s" % self.username
            else: