Pyramid-ldap3

Latest version: v0.5

Safety actively analyzes 613777 Python packages for vulnerabilities to keep your Python projects secure.

Scan your dependencies

Page 1 of 3

0.5

---

- Support realms (using different LDAP servers)

0.4.2

-----

- We require Python 2.7 or 3.5 and newer now
- Fixed and modernized the unit tests

0.4.1

-----

- Avoid fetching a connection from the pool when the result is cached.
This should improve the performance, particularly when the connection
pool is not working properly for some reason. Thanks to Daniel Nilsson.
- Improved and documented the sample application

0.4

---

- Made pyramid_ldap3 compatible with Pyramid 1.10
- We require Pyramid >= 1.4 now

0.3.2

-----

- The login value in the search filter is now properly escaped in the
authenticate() method. Although the bind test in the second stage of the
method ensures the proper password is passed, this could be exploited
to login with a different user name like 'foo*' instead of 'foobar'.
Thanks to Patrick Valsecchi for the bug report.

0.3.1

Not secure
-----

- Since ldap3 version 2.0.7, schema information is loaded from the server on
every connection. This is normally not needed for authentication and slows
down the connections, so we now disable this feature. If you fetch user or
group attributes and want them to be properly formatted, you must enable this
feature by setting get_info to 'SCHEMA' or 'ALL' when calling ldap_setup().

Page 1 of 3

© 2024 Safety CLI Cybersecurity Inc. All Rights Reserved.