Skip to content

Commit 7d22407

Browse files
gitblitgitblit
committed
Fixed anonymous LDAP logins (issue-297)
1 parent a0c34e3 commit 7d22407

File tree

2 files changed

+17
-4
lines changed

2 files changed

+17
-4
lines changed

releases.moxie

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -12,6 +12,7 @@ r19: {
1212
fixes:
1313
- Fixed Gitblit Authority startup failures when using alternate user services (issue-280)
1414
- Manually redirect after branch deletion (issue 282)
15+
- Fixed anonymous LDAP connections (issue-297)
1516
- Improved branch deletion-reflog interaction
1617
- Encode page url parameters as UTF-8
1718
- Encode filename for binary files on RawPage according to browser
@@ -28,6 +29,7 @@ r19: {
2829
- Doug Ayers
2930
- Ori Livneh
3031
- Florian Zschocke
32+
- Tito Nobre
3133
settings:
3234
- { name: 'web.activityDurationMaximum', defaultValue: 30 }
3335
- { name: 'realm.htpasswd.userFile', defaultValue: '${baseFolder}/htpasswd' }

src/main/java/com/gitblit/LdapUserService.java

Lines changed: 15 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -170,13 +170,24 @@ private LDAPConnection getLdapConnection() {
170170
if (ldapPort == -1) // Default Port
171171
ldapPort = 636;
172172

173-
SSLUtil sslUtil = new SSLUtil(new TrustAllTrustManager());
174-
return new LDAPConnection(sslUtil.createSSLSocketFactory(), ldapUrl.getHost(), ldapPort, bindUserName, bindPassword);
173+
LDAPConnection conn;
174+
SSLUtil sslUtil = new SSLUtil(new TrustAllTrustManager());
175+
if (StringUtils.isEmpty(bindUserName) && StringUtils.isEmpty(bindPassword)) {
176+
conn = new LDAPConnection(sslUtil.createSSLSocketFactory(), ldapUrl.getHost(), ldapPort);
177+
} else {
178+
conn = new LDAPConnection(sslUtil.createSSLSocketFactory(), ldapUrl.getHost(), ldapPort, bindUserName, bindPassword);
179+
}
180+
return conn;
175181
} else {
176182
if (ldapPort == -1) // Default Port
177183
ldapPort = 389;
178-
179-
LDAPConnection conn = new LDAPConnection(ldapUrl.getHost(), ldapPort, bindUserName, bindPassword);
184+
185+
LDAPConnection conn;
186+
if (StringUtils.isEmpty(bindUserName) && StringUtils.isEmpty(bindPassword)) {
187+
conn = new LDAPConnection(ldapUrl.getHost(), ldapPort);
188+
} else {
189+
conn = new LDAPConnection(ldapUrl.getHost(), ldapPort, bindUserName, bindPassword);
190+
}
180191

181192
if (ldapUrl.getScheme().equalsIgnoreCase("ldap+tls")) {
182193
SSLUtil sslUtil = new SSLUtil(new TrustAllTrustManager());

0 commit comments

Comments
 (0)