diff options
Diffstat (limited to 'pkg/auth')
| -rw-r--r-- | pkg/auth/ldap/ldap.go | 20 |
1 files changed, 15 insertions, 5 deletions
diff --git a/pkg/auth/ldap/ldap.go b/pkg/auth/ldap/ldap.go index 5c9342e9..0d34acb7 100644 --- a/pkg/auth/ldap/ldap.go +++ b/pkg/auth/ldap/ldap.go @@ -268,16 +268,26 @@ func (ls *Source) SearchEntry(name, passwd string, directBind bool) (string, str if err != nil { log.Error(2, "LDAP: Group search failed: %v", err) return "", "", "", "", false, false - } else if len(sr.Entries) < 1 { + } else if len(srg.Entries) < 1 { log.Error(2, "LDAP: Group search failed: 0 entries") return "", "", "", "", false, false } isMember := false - for _, group := range srg.Entries { - for _, member := range group.GetAttributeValues(ls.GroupMemberUID) { - if member == uid { - isMember = true + if ls.UserUID == "dn" { + for _, group := range srg.Entries { + for _, member := range group.GetAttributeValues(ls.GroupMemberUID) { + if member == sr.Entries[0].DN { + isMember = true + } + } + } + } else { + for _, group := range srg.Entries { + for _, member := range group.GetAttributeValues(ls.GroupMemberUID) { + if member == uid { + isMember = true + } } } } |