Modify

Opened 12 years ago

Closed 9 years ago

#10443 closed defect (fixed)

ADauth can't authenticate against AD for user with NON-ASCII-Signs in the password

Reported by: didiboo@… Owned by: branson
Priority: high Component: DirectoryAuthPlugin
Severity: blocker Keywords:
Cc: Trac Release: 0.11

Description

If user within AD try to authenticate, and don't have strict ASCII-Passwords, authentication fails.

According to: http://www.mail-archive.com/python-ldap-dev@lists.sourceforge.net/msg00811.html

The Patch:

Change line 120 in auth.py from:

password = passwd or self.bin_pw

to

password = (passwd or self.bind_pw).encode('utf-8')

Attachments (0)

Change History (4)

comment:1 Changed 10 years ago by hanno

Same problem still exists. Tested with most current version of the plugin (v1.0.1, r13570) and Trac 1.0 .

To fix it, I had to change in Line 186 in auth.py from

user_ldap.simple_bind_s(user_dn, passwd)

to

user_ldap.simple_bind_s(user_dn, passwd.encode('utf-8'))

comment:2 Changed 10 years ago by Ryan J Ollos

Did you also apply the patch in comment:description? Since the plugin is unmaintained I'll commit an untested patch if I get confirmation on the fix.

comment:3 Changed 9 years ago by bebbo

In 14832:

refs #10443
using password.encode(self.dir_charset) now.

comment:4 Changed 9 years ago by bebbo

Resolution: fixed
Status: newclosed

Modify Ticket

Change Properties
Set your email in Preferences
Action
as closed The owner will remain branson.
The resolution will be deleted. Next status will be 'reopened'.

Add Comment


E-mail address and name can be saved in the Preferences.

 
Note: See TracTickets for help on using tickets.