We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
There was an error while loading. Please reload this page.
1 parent bd4ba96 commit 60d3c66Copy full SHA for 60d3c66
1 file changed
redash/authentication/ldap_auth.py
@@ -8,6 +8,7 @@
8
9
try:
10
from ldap3 import Connection, Server
11
+ from ldap3.utils.conv import escape_filter_chars
12
except ImportError:
13
if settings.LDAP_LOGIN_ENABLED:
14
sys.exit(
@@ -69,6 +70,7 @@ def login(org_slug=None):
69
70
71
72
def auth_ldap_user(username, password):
73
+ clean_username = escape_filter_chars(username)
74
server = Server(settings.LDAP_HOST_URL, use_ssl=settings.LDAP_SSL)
75
if settings.LDAP_BIND_DN is not None:
76
conn = Connection(
@@ -83,7 +85,7 @@ def auth_ldap_user(username, password):
83
85
84
86
conn.search(
87
settings.LDAP_SEARCH_DN,
- settings.LDAP_SEARCH_TEMPLATE % {"username": username},
88
+ settings.LDAP_SEARCH_TEMPLATE % {"username": clean_username},
89
attributes=[settings.LDAP_DISPLAY_NAME_KEY, settings.LDAP_EMAIL_KEY],
90
)
91
0 commit comments