jro_apps/redmine Commit - r3340:c6b2f1d606c1

Refactor: Extract #get_user_dn from AuthSourceLdap....

Eric Davis -

r3340:c6b2f1d606c1

parent child

Context file:

r3340:c6b2f1d606c1

Collapse all files

app/models/auth_source_ldap.rb +27 -16

                def authenticate(login, password)
                  return nil if login.blank? || password.blank?
-                 attrs = []
-                 # get user's DN
-                 ldap_con = initialize_ldap_con(self.account, self.account_password)
-                 login_filter = Net::LDAP::Filter.eq( self.attr_login, login )
-                 object_filter = Net::LDAP::Filter.eq( "objectClass", "*" )
-                 dn = String.new
-                 ldap_con.search( :base => self.base_dn,
-                                  :filter => object_filter & login_filter,
-                                  :attributes=> search_attributes) do |entry|
-                   dn = entry.dn
-                   attrs = get_user_attributes_from_ldap_entry(entry) if onthefly_register?
-                   logger.debug "DN found for #{login}: #{dn}" if logger && logger.debug?
-                 end
-                 if authenticate_dn(dn, password)
+                 attrs = get_user_dn(login)
+                 if attrs.first && attrs.first[:dn] && authenticate_dn(attrs.first[:dn], password)
                    logger.debug "Authentication successful for '#{login}'" if logger && logger.debug?
                    return attrs
                  end
                def get_user_attributes_from_ldap_entry(entry)
                  [
+                  :dn => entry.dn,
                   :firstname => AuthSourceLdap.get_attr(entry, self.attr_firstname),
                   :lastname => AuthSourceLdap.get_attr(entry, self.attr_lastname),
                   :mail => AuthSourceLdap.get_attr(entry, self.attr_mail),
                    initialize_ldap_con(dn, password).bind
                  end
                end
+               # Get the user's dn and any attributes for them, given their login
+               def get_user_dn(login)
+                 ldap_con = initialize_ldap_con(self.account, self.account_password)
+                 login_filter = Net::LDAP::Filter.eq( self.attr_login, login )
+                 object_filter = Net::LDAP::Filter.eq( "objectClass", "*" )
+                 attrs = []
+                 ldap_con.search( :base => self.base_dn,
+                                  :filter => object_filter & login_filter,
+                                  :attributes=> search_attributes) do |entry|
+                   if onthefly_register?
+                     attrs = get_user_attributes_from_ldap_entry(entry)
+                   else
+                     attrs = [:dn => entry.dn]
+                   end
+                   logger.debug "DN found for #{login}: #{attrs.first[:dn]}" if logger && logger.debug?
+                 end
+                 attrs
+               end
                def self.get_attr(entry, attr_name)
                  if !attr_name.blank?

General Comments 0

Write
Preview

You need to be logged in to leave comments. Login now

No TODOs yet

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages