Merge branch 'ldap_scoping' into 'master'

Restrict LDAP scope in dn_matches_filter

Merge branch 'ldap_scoping' into 'master'
Restrict LDAP scope in dn_matches_filter
9490abf4 · Jacob Vosmaer · f4f99a93 · d9c0ecdc · 9490abf4
Commit 9490abf4 authored May 09, 2014 by Jacob Vosmaer
Show whitespace changes
Inline Side-by-side

Showing with 3 additions and 2 deletions

lib/gitlab/ldap/adapter.rb lib/gitlab/ldap/adapter.rb +3 -2

No files found.
--- a/lib/gitlab/ldap/adapter.rb
+++ b/lib/gitlab/ldap/adapter.rb
@@ -74,7 +74,8 @@ module Gitlab
      def users(field, value)
        if field.to_sym == :dn
          options = {
-            base: value
+            base: value,
+            scope: Net::LDAP::SearchScope_BaseObject
          }
        else
          options = {
@@ -107,7 +108,7 @@ module Gitlab
      end
      def dn_matches_filter?(dn, filter)
-        ldap_search(base: dn, filter: filter, attributes: %w{dn}).any?
+        ldap_search(base: dn, filter: filter, scope: Net::LDAP::SearchScope_BaseObject, attributes: %w{dn}).any?
      end
      def ldap_search(*args)