ldap: Add return_data for the ldap_missing_attribute property.

This should make it possible in the future to do better error output for this case.
2025-11-03 21:43:21 +00:00 · 2018-05-31 14:16:03 -07:00
parent ecb3a2ccef
commit 47824a97a4
1 changed files with 2 additions and 1 deletions
--- a/zproject/backends.py
+++ b/zproject/backends.py
@@ -444,16 +444,17 @@ class ZulipLDAPAuthBackend(ZulipLDAPAuthBackendBase):
                                                     password=password)

    def get_or_build_user(self, username: str, ldap_user: _LDAPUser) -> Tuple[UserProfile, bool]:
+        return_data = {}  # type: Dict[str, Any]

        if settings.LDAP_EMAIL_ATTR is not None:
            # Get email from ldap attributes.
            if settings.LDAP_EMAIL_ATTR not in ldap_user.attrs:
+                return_data["ldap_missing_attribute"] = settings.LDAP_EMAIL_ATTR
                raise ZulipLDAPException("LDAP user doesn't have the needed %s attribute" % (
                    settings.LDAP_EMAIL_ATTR,))

            username = ldap_user.attrs[settings.LDAP_EMAIL_ATTR][0]

-        return_data = {}  # type: Dict[str, Any]
        user_profile = common_get_active_user(username, self._realm, return_data)
        if user_profile is not None:
            # An existing user, successfully authed; return it.