From 923c78940e7872e1d77b2414317b630b52aac66e Mon Sep 17 00:00:00 2001 From: Ralf Becker Date: Tue, 15 Nov 2011 10:10:20 +0000 Subject: [PATCH] do NOT force user to change password, if LDAP does NOT support shadowlastchange attribute --- phpgwapi/inc/class.auth_ldap.inc.php | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/phpgwapi/inc/class.auth_ldap.inc.php b/phpgwapi/inc/class.auth_ldap.inc.php index a570c43992..d9a661aa3c 100644 --- a/phpgwapi/inc/class.auth_ldap.inc.php +++ b/phpgwapi/inc/class.auth_ldap.inc.php @@ -183,6 +183,11 @@ class auth_ldap implements auth_backend if ($allValues['count'] > 0) { + if (!isset($allValues[0]['shadowlastchange'])) + { + if ($this->debug) error_log(__METHOD__."('$username') no shadowlastchange attribute!"); + return false; + } if ($GLOBALS['egw_info']['server']['case_sensitive_username'] == true && $allValues[0]['uid'][0] != $username) {