From 123093a1868b25f101dfc4b02895c22a0daf5733 Mon Sep 17 00:00:00 2001
From: Mark Felder <feld@feld.me>
Date: Tue, 17 Sep 2024 13:07:26 -0400
Subject: [PATCH] Ensure :ssl is started before we attempt to make the LDAP
 connection

---
 lib/pleroma/ldap.ex | 6 ++----
 1 file changed, 2 insertions(+), 4 deletions(-)

diff --git a/lib/pleroma/ldap.ex b/lib/pleroma/ldap.ex
index ac819613e..042a4daa2 100644
--- a/lib/pleroma/ldap.ex
+++ b/lib/pleroma/ldap.ex
@@ -97,6 +97,8 @@ defmodule Pleroma.LDAP do
     tls = Keyword.get(ldap, :tls, false)
     cacertfile = Keyword.get(ldap, :cacertfile) || CAStore.file_path()
 
+    if ssl, do: Application.ensure_all_started(:ssl)
+
     default_secure_opts = [
       verify: :verify_peer,
       cacerts: decode_certfile(cacertfile),
@@ -123,10 +125,6 @@ defmodule Pleroma.LDAP do
       {:ok, connection} ->
         try do
           cond do
-            ssl ->
-              :application.ensure_all_started(:ssl)
-              {:ok, connection}
-
             tls ->
               case :eldap.start_tls(
                      connection,