You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@qpid.apache.org by "Robbie Gemmell (Jira)" <ji...@apache.org> on 2020/06/23 09:18:00 UTC

[jira] [Created] (PROTON-2243) Cyrus SASL based SASL impl sends unexpected authzid

Robbie Gemmell created PROTON-2243:
--------------------------------------

             Summary: Cyrus SASL based SASL impl sends unexpected authzid
                 Key: PROTON-2243
                 URL: https://issues.apache.org/jira/browse/PROTON-2243
             Project: Qpid Proton
          Issue Type: Bug
          Components: proton-c
    Affects Versions: proton-c-0.31.0
            Reporter: Robbie Gemmell


The behaviour previously seen and addressed in PROTON-1055 has regressed [1] for the Cyrus SASL based SASL impl, seemingly in 0.24.0 [2] causing Proton clients using the Cyrus impl to again send an unexpected authzid value equal to the username/authcid during e.g PLAIN mech usage.

Though not strictly illegal it is unexpected, and somewhat incorrect to do by default [2], and can cause interop issues with some servers. The basic non-Cyrus SASL impl does not do so this time.

[1] [https://lists.apache.org/thread.html/r72a476cc294676a5c3a17bbbcab1062264c4047eef29fe0a66e42538%40%3Cusers.qpid.apache.org%3E]
[2] https://github.com/apache/qpid-proton/commit/885d68aeaf522021a35b7b5cecb7c7c53663929b#diff-47e0b33a5461eff21e6cbbd017a969edL123-L125
[3] https://issues.apache.org/jira/browse/PROTON-1055?focusedCommentId=15015565&page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel#comment-15015565



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@qpid.apache.org
For additional commands, e-mail: dev-help@qpid.apache.org