Mercurial > kallithea

--- a/rhodecode/lib/auth_ldap.py	Mon Nov 07 15:37:58 2011 +0200
+++ b/rhodecode/lib/auth_ldap.py	Mon Nov 07 16:06:24 2011 -0500
@@ -87,6 +87,9 @@

         uid = chop_at(username, "@%s" % self.LDAP_SERVER_ADDRESS)

+        if not password:
+            log.debug("Attempt to authenticate LDAP user with blank password rejected.")
+            raise LdapPasswordError()
         if "," in username:
             raise LdapUsernameError("invalid character in username: ,")
         try: