Permit LDAP users to register without capturing their password hash

We don't need it, and local auth fallback has been removed.
2020-08-05 10:07:31 -05:00 · 2020-08-05 10:07:31 -05:00 · 2192d1e492
commit 2192d1e492
parent d5e4d8a6f3
2 changed files with 22 additions and 4 deletions
--- a/lib/pleroma/web/auth/ldap_authenticator.ex
+++ b/lib/pleroma/web/auth/ldap_authenticator.ex
@ -88,7 +88,7 @@ defmodule Pleroma.Web.Auth.LDAPAuthenticator do
            user

          _ ->
-            register_user(connection, base, uid, name, password)
+            register_user(connection, base, uid, name)
        end

      error ->
@ -96,7 +96,7 @@ defmodule Pleroma.Web.Auth.LDAPAuthenticator do
    end
  end

-  defp register_user(connection, base, uid, name, password) do
+  defp register_user(connection, base, uid, name) do
    case :eldap.search(connection, [
           {:base, to_charlist(base)},
           {:filter, :eldap.equalityMatch(to_charlist(uid), to_charlist(name))},
@ -107,8 +107,7 @@ defmodule Pleroma.Web.Auth.LDAPAuthenticator do
        params = %{
          name: name,
          nickname: name,
-          password: password,
-          password_confirmation: password
+          password: nil
        }

        changeset = User.register_changeset(%User{}, params)