public/mailtrain
1
0
Fork 0
Code Issues Pull requests Releases Wiki Activity

Added secure config parameter to use ldaps protocol

Browse source
This commit is contained in:
Guillaume Rémy 2019-08-14 11:10:14 +02:00 committed by GUILLAUME REMY
parent ae5faadffa
commit c8eeeaa9b9
1 changed files with 5 additions and 4 deletions
Download patch file Download diff file Expand all files Collapse all files

9
server/lib/passport.js
View file

@ -20,7 +20,8 @@ let authMode = 'local';
let LdapStrategy; let LdapStrategy;
let ldapStrategyOpts; let ldapStrategyOpts;
if (config.ldap.enabled) { if (config.ldap.enabled) {
if (!config.ldap.method || config.ldap.method == 'ldapjs') { const ldapProtocol = config.ldap.secure ? 'ldaps' : 'ldap';
if (!config.ldap.method || config.ldap.method === 'ldapjs') {
try { try {
LdapStrategy = require('passport-ldapjs').Strategy; // eslint-disable-line global-require LdapStrategy = require('passport-ldapjs').Strategy; // eslint-disable-line global-require
authMode = 'ldapjs'; authMode = 'ldapjs';
@ -28,7 +29,7 @@ if (config.ldap.enabled) {
ldapStrategyOpts = { ldapStrategyOpts = {
server: { server: {
url: 'ldap://' + config.ldap.host + ':' + config.ldap.port url: ldapProtocol + '://' + config.ldap.host + ':' + config.ldap.port
}, },
base: config.ldap.baseDN, base: config.ldap.baseDN,
search: { search: {
@ -46,7 +47,7 @@ if (config.ldap.enabled) {
} }
} }
if (!LdapStrategy && (!config.ldap.method || config.ldap.method == 'ldapauth')) { if (!LdapStrategy && (!config.ldap.method || config.ldap.method === 'ldapauth')) {
try { try {
LdapStrategy = require('passport-ldapauth').Strategy; // eslint-disable-line global-require LdapStrategy = require('passport-ldapauth').Strategy; // eslint-disable-line global-require
authMode = 'ldapauth'; authMode = 'ldapauth';
@ -54,7 +55,7 @@ if (config.ldap.enabled) {
ldapStrategyOpts = { ldapStrategyOpts = {
server: { server: {
url: 'ldap://' + config.ldap.host + ':' + config.ldap.port, url: ldapProtocol + '://' + config.ldap.host + ':' + config.ldap.port,
searchBase: config.ldap.baseDN, searchBase: config.ldap.baseDN,
searchFilter: config.ldap.filter, searchFilter: config.ldap.filter,
searchAttributes: [config.ldap.uidTag, config.ldap.nameTag, 'mail'], searchAttributes: [config.ldap.uidTag, config.ldap.nameTag, 'mail'],