* Add test for ssl_options.depth validation

Author: lukebakken

deps/rabbitmq_auth_backend_ldap/src/rabbit_auth_backend_ldap_mgmt.erl

@@ -197,7 +197,7 @@ tls_options(BodyMap) when is_map_key(ssl_options, BodyMap) ->
         undefined ->
             TlsOpts4;
         DepthValue ->
-            Depth = rabbit_data_coercion:to_integer(DepthValue),
+            Depth = safe_parse_int(DepthValue, "ssl_options.depth"),
             [{depth, Depth} | TlsOpts4]
     end,
     TlsOpts6 = case maps:get(<<"versions">>, SslOptionsMap, undefined) of

deps/rabbitmq_auth_backend_ldap/test/system_SUITE.erl

@@ -588,6 +588,20 @@ validate_ldap_configuration_via_api(Config) ->
                 'cacertfile' => CaCertfile
             }
         }, ?BAD_REQUEST),
+
+    %% Invalid depth value - string instead of integer
+    http_put(Config, "/ldap/validate/simple-bind",
+        #{
+            'user_dn' => AliceUserDN,
+            'password' => Password,
+            'servers' => ["localhost"],
+            'port' => LdapTlsPort,
+            'use_ssl' => true,
+            'ssl_options' => #{
+                'depth' => "not_a_number",
+                'cacertfile' => CaCertfile
+            }
+        }, ?BAD_REQUEST),
     http_put(Config, "/ldap/validate/simple-bind",
         #{
             'user_dn' => AliceUserDN,