From 84f8820c77c076621c8325e66b914768216c5414 Mon Sep 17 00:00:00 2001
From: Zachary Hopkinson <Zachary.Hopkinson@capitalone.com>
Date: Tue, 28 Jun 2016 10:58:12 -0400
Subject: [PATCH] Allow using username in Active Directory LDAP search filter

---
 .../ad/ActiveDirectoryLdapAuthenticationProvider.java           | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/ldap/src/main/java/org/springframework/security/ldap/authentication/ad/ActiveDirectoryLdapAuthenticationProvider.java b/ldap/src/main/java/org/springframework/security/ldap/authentication/ad/ActiveDirectoryLdapAuthenticationProvider.java
index 69d826301ae..18dc46ff0ba 100644
--- a/ldap/src/main/java/org/springframework/security/ldap/authentication/ad/ActiveDirectoryLdapAuthenticationProvider.java
+++ b/ldap/src/main/java/org/springframework/security/ldap/authentication/ad/ActiveDirectoryLdapAuthenticationProvider.java
@@ -312,7 +312,7 @@ private DirContextOperations searchForUser(DirContext context, String username)
 		try {
 			return SpringSecurityLdapTemplate.searchForSingleEntryInternal(context,
 					searchControls, searchRoot, searchFilter,
-					new Object[] { bindPrincipal });
+					new Object[] { bindPrincipal, username });
 		}
 		catch (IncorrectResultSizeDataAccessException incorrectResults) {
 			// Search should never return multiple results if properly configured - just