CodeQL library for Java/Kotlin
codeql/java-all 0.11.0 (changelog, source)
Search

Module InsecureLdapAuth

Provides classes to reason about insecure LDAP authentication.

Import path

import semmle.code.java.security.InsecureLdapAuth

Imports

java

Provides all default Java QL imports.

Predicates

isBasicAuthEnv

Holds if ma sets java.naming.security.authentication (also known as Context.SECURITY_AUTHENTICATION) to simple in some Hashtable.

isProviderUrlSetter

Holds if ma writes the java.naming.provider.url (also known as Context.PROVIDER_URL) key of a Hashtable.

isSslEnv

Holds if ma sets java.naming.security.protocol (also known as Context.SECURITY_PROTOCOL) to ssl in some Hashtable.

Classes

InsecureLdapUrl

An expression that represents an insecure (non-SSL, non-private) LDAP URL.

InsecureLdapUrlSink

A sink representing the construction of a DirContextEnvironment.