nemunaire/chldapasswd
1
0
Fork 0
Code Issues Pull requests Releases Activity
No description
44 commits 1 branch 0 tags 529 KiB
  • Go 50.1%
  • CSS 26.9%
  • HTML 22.4%
  • Dockerfile 0.6%
Find a file
Pierre-Olivier Mercier 10f41e4ef8 fix(security): escape LDAP filter inputs to prevent filter injection (CWE-90) 
Use ldap.EscapeFilter() on all user-controlled inputs before interpolating
them into LDAP search filter strings in SearchDN and SearchMailAlias.
Prevents authentication bypass via filter manipulation.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
2026-03-06 15:30:48 +07:00
static Add button to display the password fields 2022-05-29 00:53:20 +02:00
.drone.yml Replace bindata by embed 2024-05-31 15:52:25 +02:00
.gitignore chldapasswd is now a go module 2021-02-03 15:16:19 +01:00
addy.go Can delete own aliases 2026-03-06 15:30:48 +07:00
change.go Allow login of simpleSecurityObjects 2021-09-15 18:25:11 +02:00
Dockerfile Replace bindata by embed 2024-05-31 15:52:25 +02:00
go.mod chore(deps): update dependency go to v1.26.0 2026-03-06 15:30:48 +07:00
go.sum chore(deps): update module github.com/go-ldap/ldap/v3 to v3.4.12 2026-03-06 15:30:48 +07:00
ldap.go fix(security): escape LDAP filter inputs to prevent filter injection (CWE-90) 2026-03-06 15:30:48 +07:00
login.go Hide krbPrincipalKey 2026-03-06 15:30:48 +07:00
lost.go Can launch the executable with arguments to get reset token 2026-03-06 15:30:48 +07:00
main.go Can launch the executable with arguments to get reset token 2026-03-06 15:30:48 +07:00
renovate.json Add renovate.json 2021-08-03 09:02:00 +00:00
reset.go Allow login of simpleSecurityObjects 2021-09-15 18:25:11 +02:00
static.go Replace bindata by embed 2024-05-31 15:52:25 +02:00