Embedded LDAP server LdapAuth3: support hashed passwords (sha1, sha-256) Note that none of the currently supported hash are safe against brute force attacks. If ldapFilter property does not contain any occurrence of "${password}", the user DN found via the filter expression will be authenticated via a regular LDAP bind operation, using the entered password. In this case, with embedded LDAP server, but probably also with others, hashed passwords are supported and make sense. Change-Id: I725832a2faa484623edcebeeeb727b23b6186de2

commit: 30925d8af8acfd3586446cbae9da11130e844884 [log] [tgz]
author: Marc Kupietz <kupietz@ids-mannheim.de> Fri May 06 15:33:52 2022 +0200
committer: Marc Kupietz <kupietz@ids-mannheim.de> Sat May 14 15:56:40 2022 +0200
tree: 20119802fc7b9cf5a80edf6f8f421561d006bf84
parent: 9a1188e33fe7f3226efae5437c7798dceffffb79 [diff] [blame]
diff --git a/full/src/main/resources/embedded-ldap-default.conf b/full/src/main/resources/embedded-ldap-default.conf
index becf6e0..00cd2a2 100644
--- a/full/src/main/resources/embedded-ldap-default.conf
+++ b/full/src/main/resources/embedded-ldap-default.conf

@@ -5,6 +5,6 @@
 searchBase=dc=example,dc=com
 sLoginDN=cn=admin,dc=example,dc=com
 pwd=admin
-searchFilter=(&(uid=${login})(userPassword=${password}))
+searchFilter=(uid=${login})
 useEmbeddedServer=true
 ldifFile=src/main/resources/korap-users.ldif
commit	30925d8af8acfd3586446cbae9da11130e844884	[log] [tgz]
author	Marc Kupietz <kupietz@ids-mannheim.de>	Fri May 06 15:33:52 2022 +0200
committer	Marc Kupietz <kupietz@ids-mannheim.de>	Sat May 14 15:56:40 2022 +0200
tree	20119802fc7b9cf5a80edf6f8f421561d006bf84
parent	9a1188e33fe7f3226efae5437c7798dceffffb79 [diff] [blame]