From 995d0f8eaa21029ef5467a33eb89869142f7c331 Mon Sep 17 00:00:00 2001
From: Vladimir Homutov <vl.homutov@gmail.com>
Date: Tue, 28 Jun 2016 13:55:13 +0300
Subject: [PATCH] Default binddn is changed to empty string.

This allows to use anonymous bind, if binddn is not provided. Previous
default setting lead to use of unauthenticated bind, which is usually
disabled in LDAP server configurations.
---
 nginx-ldap-auth-daemon.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/nginx-ldap-auth-daemon.py b/nginx-ldap-auth-daemon.py
index a854bcf..be288b3 100755
--- a/nginx-ldap-auth-daemon.py
+++ b/nginx-ldap-auth-daemon.py
@@ -144,7 +144,7 @@ class LDAPAuthHandler(AuthHandler):
              'url': ('X-Ldap-URL', None),
              'basedn': ('X-Ldap-BaseDN', None),
              'template': ('X-Ldap-Template', '(cn=%(username)s)'),
-             'binddn': ('X-Ldap-BindDN', 'cn=anonymous'),
+             'binddn': ('X-Ldap-BindDN', ''),
              'bindpasswd': ('X-Ldap-BindPass', ''),
              'cookiename': ('X-CookieName', '')
         }