Project

General

Profile

Feature #9217

Squid LDAP Authentication - spaces in ldif values

Added by Vladimir Lind 5 months ago. Updated 2 months ago.

Status:
New
Priority:
Normal
Assignee:
-
Category:
-
Target version:
Start date:
12/20/2018
Due date:
% Done:

0%

Estimated time:

Description

If OU value or another ldif unit contains spaces, for example OU=all users, squid ldap auth works only if to put the whole expression in proper webgui fields (squid > Auth) between quotes.
May be it is worth to wrap the values in fields LDAP Server User DN and LDAP Base DN in quotes automatically.

This works:

auth_param basic program /usr/local/libexec/squid/basic_ldap_auth -v 3 -b 'ou=all users,dc=company,dc=local' -D 'cn=admin,ou=all users,dc=company,dc=local' -w pass -f "objectClass=user" -u sAMAccountName -P 1.1.1.1:234

This doesn't work:

auth_param basic program /usr/local/libexec/squid/basic_ldap_auth -v 3 -b ou=all users,dc=company,dc=local -D cn=admin,ou=all users,dc=company,dc=local -w pass -f "objectClass=user" -u sAMAccountName -P 1.1.1.1:234

Attached corresponding webgui config.

Ticket for reference - https://go.netgate.com/helpdesk/tickets/18080

ldap_quotes.png (34.3 KB) ldap_quotes.png Vladimir Lind, 12/20/2018 12:16 AM
ldap_no_quotes.png (34.2 KB) ldap_no_quotes.png Vladimir Lind, 12/20/2018 12:17 AM

History

#1 Updated by Jim Pingle 2 months ago

  • Target version changed from 48 to 2.5.0

Also available in: Atom PDF