diff --git a/app/controllers/sessions_controller.rb b/app/controllers/sessions_controller.rb index ef263232..2b65e07b 100644 --- a/app/controllers/sessions_controller.rb +++ b/app/controllers/sessions_controller.rb @@ -131,6 +131,7 @@ class SessionsController < ApplicationController ldap_config[:port] = ENV['LDAP_PORT'].to_i != 0 ? ENV['LDAP_PORT'].to_i : 389 ldap_config[:bind_dn] = ENV['LDAP_BIND_DN'] ldap_config[:password] = ENV['LDAP_PASSWORD'] + ldap_config[:auth_method] = ENV['LDAP_AUTH'] ldap_config[:encryption] = if ENV['LDAP_METHOD'] == 'ssl' 'simple_tls' elsif ENV['LDAP_METHOD'] == 'tls' diff --git a/config/initializers/omniauth.rb b/config/initializers/omniauth.rb index f10eb98b..9f0598e5 100644 --- a/config/initializers/omniauth.rb +++ b/config/initializers/omniauth.rb @@ -11,8 +11,7 @@ Rails.application.config.providers = [] # Set which providers are configured. Rails.application.config.omniauth_bn_launcher = Rails.configuration.loadbalanced_configuration Rails.application.config.omniauth_ldap = ENV['LDAP_SERVER'].present? && ENV['LDAP_UID'].present? && - ENV['LDAP_BASE'].present? && ENV['LDAP_BIND_DN'].present? && - ENV['LDAP_PASSWORD'].present? + ENV['LDAP_BASE'].present? Rails.application.config.omniauth_twitter = ENV['TWITTER_ID'].present? && ENV['TWITTER_SECRET'].present? Rails.application.config.omniauth_google = ENV['GOOGLE_OAUTH2_ID'].present? && ENV['GOOGLE_OAUTH2_SECRET'].present? Rails.application.config.omniauth_office365 = ENV['OFFICE365_KEY'].present? && diff --git a/sample.env b/sample.env index 4d4f3564..668813c1 100644 --- a/sample.env +++ b/sample.env @@ -61,6 +61,7 @@ OAUTH2_REDIRECT= # LDAP_METHOD=plain # LDAP_UID=uid # LDAP_BASE=dc=example,dc=com +# LDAP_AUTH=simple # LDAP_BIND_DN=cn=admin,dc=example,dc=com # LDAP_PASSWORD=password # LDAP_ROLE_FIELD=ou @@ -70,6 +71,7 @@ LDAP_METHOD= LDAP_UID= LDAP_BASE= LDAP_BIND_DN= +LDAP_AUTH= LDAP_PASSWORD= LDAP_ROLE_FIELD=