Don't provide a password for sasl authentication.
authorUwe Kleine-König <uwe@kleine-koenig.org>
Sun, 13 Oct 2019 10:19:40 -0700
changeset 130 af3c3c0a1f3b
parent 129 3bb9610fcc12
child 131 3b6cb1117ffb
Don't provide a password for sasl authentication. When a sasl parameter is given (and used) the password parameter is not used by Net::LDAP. If indeed a password is required it has to be passed in the Authen::SASL object, not as parameter to bind. So drop the password parameter which stops trying (and failing) to use password authentication sometimes if in Net/LDAP.pm the iteration over %ptype hits its 'password' member before the 'sasl' member.
shelldap
--- a/shelldap	Sat Aug 31 21:47:20 2019 -0700
+++ b/shelldap	Sun Oct 13 10:19:40 2019 -0700
@@ -770,7 +770,6 @@
 	#
 	if ( $sasl_conn ) {
 		$rv = $ldap->bind( $conf->{'binddn'},
-			password => $conf->{'bindpass'},
 			sasl     => $sasl_conn
 		);
 	}