LemonLDAP::NG uses Safe jail to evaluate all expressions:
- Access rules
- Form replay parameters
- Menu modules display
- Multi modules display
- IssuerDB use
- Session opening
More information about Safe on CPAN
Perl comparaisons are done by using
eq for strings or
== for integers.
To avoid an unwanted assignment like
$authLevel = 5 (BAD EXPRESSION!),
you can enable
Avoid assignment in expressions option.
To do this, go into Manager > General Parameters > Advanced Parameters > Security > Avoid assignment in expressions and enable it.
DISABLE by default.