Merge pull request #179 from ReneB/fix-blank-password

Fixes #20 again after huge refactor

lib/devise_ldap_authenticatable/ldap/connection.rb

@@ -18,6 +18,8 @@ def initialize(params = {})
         @ldap.port = ldap_config["port"]
         @ldap.base = ldap_config["base"]
         @attribute = ldap_config["attribute"]
+        @allow_unauthenticated_bind = ldap_config["allow_unauthenticated_bind"]
+
         @ldap_auth_username_builder = params[:ldap_auth_username_builder]
 
         @group_base = ldap_config["group_base"]
@@ -72,6 +74,7 @@ def ldap_param_value(param)
       end
 
       def authenticate!
+        return false unless (@password.present? || @allow_unauthenticated_bind)
         @ldap.auth(dn, @password)
         @ldap.bind
       end

lib/generators/devise_ldap_authenticatable/templates/ldap.yml

@@ -3,6 +3,7 @@
 # You can also just copy and paste the tree (do not include the "authorizations") to each
 # environment if you need something different per enviornment.
 authorizations: &AUTHORIZATIONS
+  allow_unauthenticated_bind: false
   group_base: ou=groups,dc=test,dc=com
   ## Requires config.ldap_check_group_membership in devise.rb be true
   # Can have multiple values, must match all to be authorized