Support fallback to LDAP password authentication when i_use_mode_kerberos is enabled
Currently, when i_use_mode_kerberos
is enabled in the LDAP driver, Davical checks the REMOTE_USER
server variable, followed by the REDIRECT_REMOTE_USER
variable, for a matching username. If a matching username is not found, authentication fails immediately.
For i_use_mode_kerberos
, it would be nice if the LDAP driver could fallback to standard LDAP authentication when these server variables aren't set. That way, clients which do not support Kerberos can still log in.
It's possible to work around this by enabling Basic Auth fallback in the webserver, but it's a nicer experience for clients to see the real Davical login page.