don't attempt to read a user's ldap password

2010-04-17 15:09:56 -04:00 · 2010-04-17 15:09:56 -04:00 · 23bad16bba
parent ffd688b8ef
commit 23bad16bba
1 changed files with 6 additions and 1 deletions
--- a/plugins/LdapAuthentication/LdapAuthenticationPlugin.php
+++ b/plugins/LdapAuthentication/LdapAuthenticationPlugin.php
@ -96,7 +96,12 @@ class LdapAuthenticationPlugin extends AuthenticationPlugin
        if($entry){
            $registration_data = array();
            foreach($this->attributes as $sn_attribute=>$ldap_attribute){
-                $registration_data[$sn_attribute]=$entry->getValue($ldap_attribute,'single');
+                //ldap won't let us read a user's password,
+                //and we're going to set the password to a random string later anyways,
+                //so don't bother trying to read it.
+                if($sn_attribute != 'password'){
+                    $registration_data[$sn_attribute]=$entry->getValue($ldap_attribute,'single');
+                }
            }
            if(isset($registration_data['email']) && !empty($registration_data['email'])){
                $registration_data['email_confirmed']=true;