From 14974b8a9f0fec91d709cb5f6356b2ea553a7a72 Mon Sep 17 00:00:00 2001
From: "uwe@kleine-koenig.org" <uwe@kleine-koenig.org>
Date: Sun, 13 Oct 2019 17:19:40 +0000
Subject: [PATCH] Don't provide a password for sasl authentication.

When a sasl parameter is given (and used) the password parameter is not
used by Net::LDAP. If indeed a password is required it has to be passed
in the Authen::SASL object, not as parameter to bind.

So drop the password parameter which stops trying (and failing) to use
password authentication sometimes if in Net/LDAP.pm the iteration over
%ptype hits its 'password' member before the 'sasl' member.

FossilOrigin-Name: b4e59a307c07b9a201ddd841cca963f689b424ad9e2ba6eb3f6522c955d722ad
---
 shelldap | 1 -
 1 file changed, 1 deletion(-)

diff --git a/shelldap b/shelldap
index 68dde20..5a18f23 100755
--- a/shelldap
+++ b/shelldap
@@ -770,7 +770,6 @@ You may try connecting insecurely, or install the module and try again.\n} if $@
 	#
 	if ( $sasl_conn ) {
 		$rv = $ldap->bind( $conf->{'binddn'},
-			password => $conf->{'bindpass'},
 			sasl     => $sasl_conn
 		);
 	}