fix: added missing check on LDAP to avoid password checks (#2943)

thorsten · May 6, 2024 · 0378ade · 0378ade
1 parent 848b32b
commit 0378ade
Showing 1 changed file with 2 additions and 1 deletion.
diff --git a/phpmyfaq/api.service.php b/phpmyfaq/api.service.php
@@ -857,6 +857,7 @@
         $user = CurrentUser::getFromSession($faqConfig);
 
         $isAzureAdUser = $user->getUserAuthSource() === 'azure';
+        $isLdapUser = $user->getUserAuthSource() === 'ldap';
 
         if ($deleteSecret === 'on') {
             $secret = '';
@@ -870,7 +871,7 @@
             break;
         }
 
-        if (!$isAzureAdUser) {
+        if (!$isAzureAdUser && !$isLdapUser) {
             if ($password !== $confirm) {
                 $response->setStatusCode(Response::HTTP_CONFLICT);
                 $response->setData(['error' => Translation::get('ad_user_error_passwordsDontMatch')]);