Update ldap.php

If the LDAP password is not provided then set authorized to false.
2016-11-02 00:16:30 -06:00 · 2016-11-02 00:16:30 -06:00 · 5c5446b953
parent bd7867ef5e
commit 5c5446b953
1 changed files with 12 additions and 4 deletions
--- a/core/authentication/resources/classes/plugins/ldap.php
+++ b/core/authentication/resources/classes/plugins/ldap.php
@ -62,12 +62,20 @@ class plugin_ldap {
 				//Note: As of 4/16, the call below will fail randomly. PHP debug reports ldap_bind
 				//called below with all arguments '*uninitialized*'. However, the debugger
 				//single-stepping just before the failing call correctly displays all the values.
-				$bind = ldap_bind($connect, $bind_dn, $bind_pw);
-				if ($bind) {
-					$user_authorized = true;
-					break;
+				if (strlen($bind_pw) > 0) {
+					$bind = ldap_bind($connect, $bind_dn, $bind_pw);
+					if ($bind) {
+						//connected and authorized
+						$user_authorized = true;
+						break;
+					}
+					else {
+						//connection failed
+						$user_authorized = false;
+					}
 				}
 				else {
+					//password not provided
 					$user_authorized = false;
 				}
 			}