Inicio Explorar Axuda
Iniciar sesión
mirrors
/
wekan
réplica de https://github.com/wekan/wekan.git
2
0
Fork 0
Ficheiros Incidencias 0 Wiki
Explorar o código

Repair LDAP_REJECT_UNAUTHORIZED=false (broken by commit 31f8912, fixes #3493)

Previous commit 31f89121fecca5a761b05cc3a26d4f237e90b484 happened to fix
CVE-2021-3309, but unfortunately breaks LDAP_REJECT_UNAUTHORIZED=false.
Robert Scheck %!s(int64=4) %!d(string=hai) anos
pai
fa51ce6fb0
achega
4c6084ab68
Modificáronse 1 ficheiros con 1 adicións e 1 borrados
Dividir vista Mostrar estatísticas de Diff
  1. 1 1
      packages/wekan-ldap/server/ldap.js

+ 1 - 1
packages/wekan-ldap/server/ldap.js
Ver ficheiro 

@@ -19,7 +19,7 @@ export default class LDAP {
 
       idle_timeout                       : this.constructor.settings_get('LDAP_IDLE_TIMEOUT'),
 
       encryption                         : this.constructor.settings_get('LDAP_ENCRYPTION'),
 
       ca_cert                            : this.constructor.settings_get('LDAP_CA_CERT'),
 
-      reject_unauthorized                : this.constructor.settings_get('LDAP_REJECT_UNAUTHORIZED') || true,
 
+      reject_unauthorized                : this.constructor.settings_get('LDAP_REJECT_UNAUTHORIZED') !== undefined ? this.constructor.settings_get('LDAP_REJECT_UNAUTHORIZED') : true,
 
       Authentication                     : this.constructor.settings_get('LDAP_AUTHENTIFICATION'),
 
       Authentication_UserDN              : this.constructor.settings_get('LDAP_AUTHENTIFICATION_USERDN'),
 
       Authentication_Password            : this.constructor.settings_get('LDAP_AUTHENTIFICATION_PASSWORD'),