From 9ba60234f46f8f5a291983111951c6158671f7d7 Mon Sep 17 00:00:00 2001
From: "lpsolit%gmail.com" <>
Date: Fri, 2 Jun 2006 18:52:48 +0000
Subject: Bug 282687: LDAP: TLS Support - Patch by guillomovitch@zarb.org
 r=mkanat a=justdave

---
 Bugzilla/Auth/Verify/LDAP.pm | 8 ++++++++
 Bugzilla/Config/LDAP.pm      | 6 ++++++
 2 files changed, 14 insertions(+)

(limited to 'Bugzilla')

diff --git a/Bugzilla/Auth/Verify/LDAP.pm b/Bugzilla/Auth/Verify/LDAP.pm
index dccfa0b7c..2ee5247ec 100644
--- a/Bugzilla/Auth/Verify/LDAP.pm
+++ b/Bugzilla/Auth/Verify/LDAP.pm
@@ -164,6 +164,14 @@ sub ldap {
     my $conn_string = "$protocol://$server:$port";
     $self->{ldap} = new Net::LDAP($conn_string) 
         || ThrowCodeError("ldap_connect_failed", { server => $conn_string });
+
+    # try to start TLS if needed
+    if (Param("LDAPstarttls")) {
+        my $mesg = $self->{ldap}->start_tls();
+        ThrowCodeError("ldap_start_tls_failed", { error => $mesg->error() })
+            if $mesg->code();
+    }
+
     return $self->{ldap};
 }
 
diff --git a/Bugzilla/Config/LDAP.pm b/Bugzilla/Config/LDAP.pm
index 3f123243b..a9b46382e 100644
--- a/Bugzilla/Config/LDAP.pm
+++ b/Bugzilla/Config/LDAP.pm
@@ -46,6 +46,12 @@ sub get_param_list {
    default => ''
   },
 
+  {
+   name => 'LDAPstarttls',
+   type => 'b',
+   default => 0
+  },
+
   {
    name => 'LDAPbinddn',
    type => 't',
-- 
cgit v1.2.3-24-g4f1b