Explain auth logic some more

ddb46f48 · Jan-Willem van der Meer · c0229e46 · ddb46f48 · ddb46f48
Commit ddb46f48 authored Oct 08, 2014 by Jan-Willem van der Meer
Show whitespace changes
Inline Side-by-side

Showing with 4 additions and 3 deletions

lib/gitlab/auth.rb lib/gitlab/auth.rb +3 -1

spec/lib/gitlab/auth_spec.rb spec/lib/gitlab/auth_spec.rb +1 -2

No files found.
--- a/lib/gitlab/auth.rb
+++ b/lib/gitlab/auth.rb
@@ -3,9 +3,11 @@ module Gitlab
    def find(login, password)
      user = User.find_by(email: login) || User.find_by(username: login)

+      # If no user is found, or it's an LDAP server, try LDAP.
+      #   LDAP users are only authenticated via LDAP
      if user.nil? || user.ldap_user?
        # Second chance - try LDAP authentication
-        return nil unless ldap_conf.enabled
+        return nil unless Gitlab::LDAP::Config.enabled?

        Gitlab::LDAP::User.authenticate(login, password)
      else

--- a/spec/lib/gitlab/auth_spec.rb
+++ b/spec/lib/gitlab/auth_spec.rb
@@ -28,8 +28,7 @@ describe Gitlab::Auth do
    end

    context "with ldap enabled" do
-      before { Gitlab.config.ldap['enabled'] = true }
-      after  { Gitlab.config.ldap['enabled'] = false }
+      before { Gitlab::LDAP::Config.enabled.stub(enabled?: true) }

      it "tries to autheticate with db before ldap" do
        expect(Gitlab::LDAP::User).not_to receive(:authenticate)