Use an admin connection to get the user data

3 years ago · 9e9359114f
parent 24f3b7d5e7
commit 9e9359114f
2 changed files with 9 additions and 2 deletions
--- a/ldap/user.go
+++ b/ldap/user.go
@ -37,6 +37,12 @@ func (l Ldap) ValidateUser(user string, pass string) (User, error) {
 	if err != nil {
 		return User{}, err
 	}
+	conn.Close()
+
+	conn, err = l.connect()
+	if err != nil {
+		return User{}, err
+	}
 	defer conn.Close()

 	entry, err := l.searchUser(user, conn)
@ -137,7 +143,7 @@ func (l Ldap) ListUsers() ([]User, error) {
 	defer conn.Close()

 	searchRequest := ldap.NewSearchRequest(
-		"ou=people,"+l.DC,
+		"ou=People,"+l.DC,
 		ldap.ScopeWholeSubtree, ldap.NeverDerefAliases, 0, 0, false,
 		"(&(objectClass=posixAccount))",
 		searchAttributes,
@ -262,7 +268,7 @@ func (l Ldap) login(user string, password string) (*ldap.Conn, error) {

 func (l Ldap) searchUser(user string, conn *ldap.Conn) (entry *ldap.Entry, err error) {
 	searchRequest := ldap.NewSearchRequest(
-		"ou=people,"+l.DC,
+		"ou=People,"+l.DC,
 		ldap.ScopeWholeSubtree, ldap.NeverDerefAliases, 0, 0, false,
 		fmt.Sprintf("(&(objectClass=posixAccount)(uid=%s))", ldap.EscapeFilter(user)),
 		searchAttributes,
--- a/server/user.go
+++ b/server/user.go
@ -28,6 +28,7 @@ func (s *server) loginHandler(w http.ResponseWriter, r *http.Request) {

 	user, err := s.ldap.ValidateUser(name, pass)
 	if err != nil {
+		log.Printf("Error login %s: %v", name, err)
 		response := s.newResponse("login", w, r)
 		response.execute(true)
 		return