I am an idiot, don't let only people with the *wrong* password stream

2024-12-22 03:22:20 +00:00 · 2021-01-08 23:05:01 +01:00 · 2021-01-08 23:05:01 +01:00 · 34652f8f3e
commit 34652f8f3e
parent 79f52ed880
2 changed files with 2 additions and 2 deletions
--- a/auth/ldap/ldap.go
+++ b/auth/ldap/ldap.go
@ -45,12 +45,12 @@ func (a LDAP) Login(username string, password string) (bool, string, error) {
 		log.Printf("[LDAP] Logging to %s...", bindDn)
 		err = a.Conn.Bind(bindDn, password)
 		if err == nil {
-			log.Printf("[LDAP] Logging failed: %s", err)
 			// Login succeeded if no error
 			return true, aliasSplit[0], nil
 		}
 	}

+	log.Printf("[LDAP] Logging failed: %s", err)
 	// Unable to log in
 	return err == nil, "", err
 }
--- a/stream/srt/srt.go
+++ b/stream/srt/srt.go
@ -83,7 +83,7 @@ func Serve(streams *messaging.Streams, authBackend auth.Backend, cfg *Options) {
 			if authBackend != nil {
 				// check password
 				ok, username, err := authBackend.Login(name, password)
-				if ok || err != nil {
+				if !ok || err != nil {
 					log.Printf("Failed to authenticate for stream %s", name)
 					s.Close()
 					continue