nemunaire/chldapasswd
1
0
Fork 0
Code Issues Pull requests Releases Activity
No description
45 commits 1 branch 0 tags 293 KiB
  • Go 50.1%
  • CSS 26.9%
  • HTML 22.4%
  • Dockerfile 0.6%
Find a file
Pierre-Olivier Mercier a2f368eb02 fix(security): add missing return after redirect in resetPassword handler 
http.Redirect only sets response headers; without return, handler execution
continued with empty login/token strings, potentially causing unexpected
LDAP queries and information leakage.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
2026-03-06 15:30:48 +07:00
static Add button to display the password fields 2022-05-29 00:53:20 +02:00
.drone.yml Replace bindata by embed 2024-05-31 15:52:25 +02:00
.gitignore chldapasswd is now a go module 2021-02-03 15:16:19 +01:00
addy.go Can delete own aliases 2026-03-06 15:30:48 +07:00
change.go Allow login of simpleSecurityObjects 2021-09-15 18:25:11 +02:00
Dockerfile Replace bindata by embed 2024-05-31 15:52:25 +02:00
go.mod chore(deps): update dependency go to v1.26.0 2026-03-06 15:30:48 +07:00
go.sum chore(deps): update module github.com/go-ldap/ldap/v3 to v3.4.12 2026-03-06 15:30:48 +07:00
ldap.go fix(security): escape LDAP filter inputs to prevent filter injection (CWE-90) 2026-03-06 15:30:48 +07:00
login.go Hide krbPrincipalKey 2026-03-06 15:30:48 +07:00
lost.go Can launch the executable with arguments to get reset token 2026-03-06 15:30:48 +07:00
main.go Can launch the executable with arguments to get reset token 2026-03-06 15:30:48 +07:00
renovate.json Add renovate.json 2021-08-03 09:02:00 +00:00
reset.go fix(security): add missing return after redirect in resetPassword handler 2026-03-06 15:30:48 +07:00
static.go Replace bindata by embed 2024-05-31 15:52:25 +02:00