may have found a bug in Zend_Ldap. Before I submit a ticket to the issue
tracker, I wanted to see if this is actually a bug or if I am doing
something wrong.
Environment:
Zend Framework 1.6.2
Microsoft Active Directory
Here is the pertinent part of the config file I am using:
ldap.server.host = corp.example.com
ldap.server.accountDomainNameShort = EXAMPLE
ldap.server.accountCanonicalForm = 3
When trying to authenticate, I am receiving a error message stating "Option
required: accountDomainName"
The traceback show this:
D:\library\Zend\Ldap.php(712):
Zend_Ldap->getCanonicalAccountName('Example\mlorey', 4)
^^ notice the 4 above, instead of the 3 i specified.
If I add the accountDomainName i fail authentication because it is trying to
authenticate as mlorey@example.com. My active directory requires I
authenticate as EXAMPLE\mlorey.
Changes lines 711 - 712 of Ldap.php to from:
$username = $this->getCanonicalAccountName($username,
Zend_Ldap::ACCTNAME_FORM_PRINCIPAL);
to:
$username = $this->getCanonicalAccountName($username,
$this->_options['accountCanonicalForm']);
works, as it authenticates as EXAMPLE\mlorey.
It seems the current code uses Zend_Ldap::ACCTNAME_FORM_PRINCIPAL (4)
instead of what I configured 3 (Zend_Ldap::ACCTNAME_FORM_BACKSLASH). Am I
missing something here, or is this a bug?
Thanks,
Matt Lorey
--
View this message in context: http://www.nabble.com/Possible-bug-in-Zend_Ldap-tp19975757p19975757.html
Sent from the Zend Auth mailing list archive at Nabble.com.
没有评论:
发表评论