diff options
author | Nathan Kinder <nkinder@redhat.com> | 2010-02-17 10:56:40 -0800 |
---|---|---|
committer | Nathan Kinder <nkinder@redhat.com> | 2010-02-17 10:56:40 -0800 |
commit | 363be335610467952a572ca0898a7b9f77db7a01 (patch) | |
tree | c126237fed172c2880b0544f88e9f8029488c29e /VERSION.sh | |
parent | a7d0c3dd59a1f04eb3987b521d67a0a36c719896 (diff) | |
download | ds-363be335610467952a572ca0898a7b9f77db7a01.tar.gz ds-363be335610467952a572ca0898a7b9f77db7a01.tar.xz ds-363be335610467952a572ca0898a7b9f77db7a01.zip |
Bug 434735 - Allow SASL ANONYMOUS mech to work
The SASL ANONYMOUS mechanism was broken since the SASL mapping code
was invoked to map anonymous to a real user entry. This adds a
special case to the canonify user callback that sets the bind DN
to "" if the ANONYMOUS mechanism is being used.
I also added a check to see if anonymous access is disabled when
we set up the SASL secprops for a connection. If anonymous access
is disabled, we set a SASL security flag to disallow mechanisms
that would allow anonymous access.
Diffstat (limited to 'VERSION.sh')
0 files changed, 0 insertions, 0 deletions