Merge pull request #1725 from keegan/master
Stop LDAP Auth from succeeding without password
This commit is contained in:
commit
ccd37aba8f
@ -23,7 +23,7 @@ function ldapAuthCommon(user, bindDN, password, callback) {
|
||||
}
|
||||
|
||||
function simpleLdapAuth(user, password, callback) {
|
||||
if (!user) {
|
||||
if (!user || !password) {
|
||||
return callback(false);
|
||||
}
|
||||
|
||||
@ -41,7 +41,7 @@ function simpleLdapAuth(user, password, callback) {
|
||||
* LDAP auth using initial DN search (see config comment for ldap.searchDN)
|
||||
*/
|
||||
function advancedLdapAuth(user, password, callback) {
|
||||
if (!user) {
|
||||
if (!user || !password) {
|
||||
return callback(false);
|
||||
}
|
||||
|
||||
|
Loading…
Reference in New Issue
Block a user