From 1f198e925677e8a9aa08417514ba431162741337 Mon Sep 17 00:00:00 2001
From: Jeff Mitchell <jeffrey.mitchell@gmail.com>
Date: Mon, 8 Aug 2016 10:18:36 -0400
Subject: [PATCH] Return warning about ACLing the LDAP configuration endpoint.

Fixes #1263
---
 builtin/credential/ldap/path_config.go | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/builtin/credential/ldap/path_config.go b/builtin/credential/ldap/path_config.go
index f1b455a0e..bc4d800c1 100644
--- a/builtin/credential/ldap/path_config.go
+++ b/builtin/credential/ldap/path_config.go
@@ -158,9 +158,11 @@ func (b *backend) pathConfigRead(
 		return nil, nil
 	}
 
-	return &logical.Response{
+	resp := &logical.Response{
 		Data: structs.New(cfg).Map(),
-	}, nil
+	}
+	resp.AddWarning("Read access to this endpoint should be controlled via ACLs as it will return the configuration information as-is, including any passwords.")
+	return resp, nil
 }
 
 /*