# HG changeset patch
# User Sylvain Thénault <sylvain.thenault@logilab.fr>
# Date 1272288523 -7200
# Node ID 7730796f95064f7b19c2b3737ea3259a5cd5e518
# Parent  13d7e220d1592c8500b7c78df77851feb1503382
disable CERT check

diff -r 13d7e220d159 -r 7730796f9506 server/sources/ldapuser.py
--- a/server/sources/ldapuser.py	Mon Apr 26 11:33:44 2010 +0200
+++ b/server/sources/ldapuser.py	Mon Apr 26 15:28:43 2010 +0200
@@ -67,7 +67,6 @@
           'help': 'ldap protocol (allowed values: ldap, ldaps, ldapi)',
           'group': 'ldap-source', 'inputlevel': 1,
           }),
-
         ('auth-mode',
          {'type' : 'choice',
           'default': 'simple',
@@ -422,6 +421,9 @@
             hostport = self.host
         self.info('connecting %s://%s as %s', self.protocol, hostport,
                   user and user['dn'] or 'anonymous')
+        # don't require server certificate when using ldaps (will
+        # enable self signed certs)
+        ldap.set_option(ldap.OPT_X_TLS_REQUIRE_CERT, ldap.OPT_X_TLS_NEVER)
         url = LDAPUrl(urlscheme=self.protocol, hostport=hostport)
         conn = ReconnectLDAPObject(url.initializeUrl())
         # Set the protocol version - version 3 is preferred