sindominio
/
lowry
10
0
Fork 4
Code Issues 8 Pull Requests 1 Releases Wiki Activity
Browse Source

Don't login deleted users

setup_test
meskio 1 year ago
parent
50a520dda3
commit
93fd22417b
Signed by: meskio
GPG Key ID: 52B8F5AC97A2DA86
1 changed files with 13 additions and 0 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Split View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 13
      ldap/user.go

13
ldap/user.go
Unescape View File

@ -33,6 +33,10 @@ type User struct {
// ValidateUser in the ldap
func (l Ldap) ValidateUser(user string, pass string) (User, error) {
if err := l.deletedUser(user); err != nil {
return User{}, err
}
conn, err := l.login(user, pass)
if err != nil {
return User{}, err
@ -52,6 +56,15 @@ func (l Ldap) ValidateUser(user string, pass string) (User, error) {
return newUser(entry), nil
}
func (l Ldap) deletedUser(user string) error {
u, err := l.GetUser(user)
if err == nil && u.Locked == Deleted {
err = fmt.Errorf("Deleted user %s", user)
}
return err
}
// IsUserPassUptodate will be true if the password for that user in ldap is using the latest crypto
func (l Ldap) IsUserPassUptodate(user string) bool {
conn, err := l.connect()

Write Preview
Loading…
Cancel
Save