[TYPO3-english] ldap/sso extension ldap bind failed
Jigal van Hemert
jigal.van.hemert at typo3.org
Tue Sep 1 14:35:58 CEST 2015
Hi,
On 01/09/2015 00:14, Andy Thompson wrote:
> It appears the ldap_password gets stored in the database configuration
> table as ******** as opposed to any hash or the actual password when
> updating it thru the configuration screen. I updated that to just the
> plain text password and the bind user was able to bind successfully.
I just checked in the only installation that uses this extension and the
bind password is stored as text, not as *********.
> Are there future plans to hash the password when it is stored?
The password probably has to be sent to the LDAP server. If one cannot
send a hash instead of the password itself it isn't possible to store a
hash in this case.
--
Jigal van Hemert
TYPO3 CMS Active Contributor
TYPO3 .... inspiring people to share!
Get involved: typo3.org
More information about the TYPO3-english
mailing list