diff --git a/security/ldap.rst b/security/ldap.rst index 10aefe1badb..8c9ed1903e3 100644 --- a/security/ldap.rst +++ b/security/ldap.rst @@ -486,6 +486,8 @@ Configuration example for form login and query_string service: Symfony\Component\Ldap\Ldap dn_string: 'dc=example,dc=com' query_string: '(&(uid={username})(memberOf=cn=users,ou=Services,dc=example,dc=com))' + search_dn: '...' + search_password: 'the-raw-password' .. code-block:: xml @@ -502,7 +504,9 @@ Configuration example for form login and query_string + query-string="(&(uid={username})(memberOf=cn=users,ou=Services,dc=example,dc=com))" + search-dn="..." + search-password="the-raw-password"/> @@ -519,12 +523,19 @@ Configuration example for form login and query_string 'service' => Ldap::class, 'dn_string' => 'dc=example,dc=com', 'query_string' => '(&(uid={username})(memberOf=cn=users,ou=Services,dc=example,dc=com))', + 'search_dn' => '...', + 'search_password' => 'the-raw-password', // ... ], ], ] ]); +.. deprecated:: 4.4 + + Using the ``query_string`` config option without defining ``search_dn`` and + ``search_password`` is deprecated since Symfony 4.4. + .. _`LDAP PHP extension`: http://www.php.net/manual/en/intro.ldap.php .. _`RFC4515`: http://www.faqs.org/rfcs/rfc4515.html .. _`LDAP injection`: http://projects.webappsec.org/w/page/13246947/LDAP%20Injection