You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@qpid.apache.org by "Keith Wall (JIRA)" <ji...@apache.org> on 2012/11/27 10:02:00 UTC
[jira] [Created] (QPID-4475) Web management plugin support for
PLAIN SASL mechanism
Keith Wall created QPID-4475:
--------------------------------
Summary: Web management plugin support for PLAIN SASL mechanism
Key: QPID-4475
URL: https://issues.apache.org/jira/browse/QPID-4475
Project: Qpid
Issue Type: Improvement
Components: Java Broker
Affects Versions: 0.21
Reporter: Keith Wall
The web management module of the Java Broker should be enhanced to allow for the use of the PLAIN SASL mechanism. This would allow the web-management module to be used with the SimpleLDAPAuthenticationManager (which requires PLAIN as it must pass a clear-text password through to the LDAP server).
If PLAIN is in-use, then the Broker should restrict the web management to a secure protocol in order to avoid the transmision of user password in clear-text across the wire.
Caused by: javax.security.sasl.SaslException: Unknown mechanism: CRAM-MD5
at org.apache.qpid.server.security.auth.manager.SimpleLDAPAuthenticationManager.createSaslServer(SimpleLDAPAuthenticationManager.java:193)
at org.apache.qpid.server.security.SubjectCreator.createSaslServer(SubjectCreator.java:74)
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@qpid.apache.org
For additional commands, e-mail: dev-help@qpid.apache.org
[jira] [Commented] (QPID-4475) Web management plugin support for
PLAIN SASL mechanism
Posted by "Keith Wall (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/QPID-4475?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13504466#comment-13504466 ]
Keith Wall commented on QPID-4475:
----------------------------------
This should be a case of extending the web-management module so that the client selects an appropriate mechanism from those advertised by the server from the http://localhost:8080/rest/sasl.
> Web management plugin support for PLAIN SASL mechanism
> ------------------------------------------------------
>
> Key: QPID-4475
> URL: https://issues.apache.org/jira/browse/QPID-4475
> Project: Qpid
> Issue Type: Improvement
> Components: Java Broker
> Affects Versions: 0.21
> Reporter: Keith Wall
>
> The web management module of the Java Broker should be enhanced to allow for the use of the PLAIN SASL mechanism. This would allow the web-management module to be used with the SimpleLDAPAuthenticationManager (which requires PLAIN as it must pass a clear-text password through to the LDAP server).
> If PLAIN is in-use, then the Broker should restrict the web management to a secure protocol in order to avoid the transmision of user password in clear-text across the wire.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@qpid.apache.org
For additional commands, e-mail: dev-help@qpid.apache.org
[jira] [Assigned] (QPID-4475) Web management plugin support for
PLAIN SASL mechanism
Posted by "Robbie Gemmell (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/QPID-4475?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Robbie Gemmell reassigned QPID-4475:
------------------------------------
Assignee: Robbie Gemmell
> Web management plugin support for PLAIN SASL mechanism
> ------------------------------------------------------
>
> Key: QPID-4475
> URL: https://issues.apache.org/jira/browse/QPID-4475
> Project: Qpid
> Issue Type: Improvement
> Components: Java Broker
> Affects Versions: 0.21
> Reporter: Keith Wall
> Assignee: Robbie Gemmell
>
> The web management module of the Java Broker should be enhanced to allow for the use of the PLAIN SASL mechanism. This would allow the web-management module to be used with the SimpleLDAPAuthenticationManager (which requires PLAIN as it must pass a clear-text password through to the LDAP server).
> If PLAIN is in-use, then the Broker should restrict the web management to a secure protocol in order to avoid the transmision of user password in clear-text across the wire.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@qpid.apache.org
For additional commands, e-mail: dev-help@qpid.apache.org
[jira] [Updated] (QPID-4475) Web management plugin support for
PLAIN SASL mechanism
Posted by "Robbie Gemmell (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/QPID-4475?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Robbie Gemmell updated QPID-4475:
---------------------------------
Status: Ready To Review (was: In Progress)
> Web management plugin support for PLAIN SASL mechanism
> ------------------------------------------------------
>
> Key: QPID-4475
> URL: https://issues.apache.org/jira/browse/QPID-4475
> Project: Qpid
> Issue Type: Improvement
> Components: Java Broker
> Affects Versions: 0.21
> Reporter: Keith Wall
> Assignee: Robbie Gemmell
>
> The web management module of the Java Broker should be enhanced to allow for the use of the PLAIN SASL mechanism. This would allow the web-management module to be used with the SimpleLDAPAuthenticationManager (which requires PLAIN as it must pass a clear-text password through to the LDAP server).
> If PLAIN is in-use, then the Broker should restrict the web management to a secure protocol in order to avoid the transmision of user password in clear-text across the wire.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@qpid.apache.org
For additional commands, e-mail: dev-help@qpid.apache.org
[jira] [Assigned] (QPID-4475) Web management plugin support for
PLAIN SASL mechanism
Posted by "Robbie Gemmell (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/QPID-4475?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Robbie Gemmell reassigned QPID-4475:
------------------------------------
Assignee: Rob Godfrey (was: Robbie Gemmell)
Rob, could you review this please?
> Web management plugin support for PLAIN SASL mechanism
> ------------------------------------------------------
>
> Key: QPID-4475
> URL: https://issues.apache.org/jira/browse/QPID-4475
> Project: Qpid
> Issue Type: Improvement
> Components: Java Broker
> Affects Versions: 0.21
> Reporter: Keith Wall
> Assignee: Rob Godfrey
>
> The web management module of the Java Broker should be enhanced to allow for the use of the PLAIN SASL mechanism. This would allow the web-management module to be used with the SimpleLDAPAuthenticationManager (which requires PLAIN as it must pass a clear-text password through to the LDAP server).
> If PLAIN is in-use, then the Broker should restrict the web management to a secure protocol in order to avoid the transmision of user password in clear-text across the wire.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@qpid.apache.org
For additional commands, e-mail: dev-help@qpid.apache.org
[jira] [Commented] (QPID-4475) Web management plugin support for
PLAIN SASL mechanism
Posted by "Justin Ross (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/QPID-4475?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13505635#comment-13505635 ]
Justin Ross commented on QPID-4475:
-----------------------------------
Reviewed by Rob. Approved for 0.20.
> Web management plugin support for PLAIN SASL mechanism
> ------------------------------------------------------
>
> Key: QPID-4475
> URL: https://issues.apache.org/jira/browse/QPID-4475
> Project: Qpid
> Issue Type: Improvement
> Components: Java Broker
> Affects Versions: 0.21
> Reporter: Keith Wall
> Assignee: Rob Godfrey
> Fix For: 0.20, 0.21
>
>
> The web management module of the Java Broker should be enhanced to allow for the use of the PLAIN SASL mechanism. This would allow the web-management module to be used with the SimpleLDAPAuthenticationManager (which requires PLAIN as it must pass a clear-text password through to the LDAP server).
> If PLAIN is in-use, then the Broker should restrict the web management to a secure protocol in order to avoid the transmision of user password in clear-text across the wire.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@qpid.apache.org
For additional commands, e-mail: dev-help@qpid.apache.org
[jira] [Resolved] (QPID-4475) Web management plugin support for
PLAIN SASL mechanism
Posted by "Rob Godfrey (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/QPID-4475?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Rob Godfrey resolved QPID-4475.
-------------------------------
Resolution: Fixed
Looks good to me
> Web management plugin support for PLAIN SASL mechanism
> ------------------------------------------------------
>
> Key: QPID-4475
> URL: https://issues.apache.org/jira/browse/QPID-4475
> Project: Qpid
> Issue Type: Improvement
> Components: Java Broker
> Affects Versions: 0.21
> Reporter: Keith Wall
> Assignee: Rob Godfrey
>
> The web management module of the Java Broker should be enhanced to allow for the use of the PLAIN SASL mechanism. This would allow the web-management module to be used with the SimpleLDAPAuthenticationManager (which requires PLAIN as it must pass a clear-text password through to the LDAP server).
> If PLAIN is in-use, then the Broker should restrict the web management to a secure protocol in order to avoid the transmision of user password in clear-text across the wire.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@qpid.apache.org
For additional commands, e-mail: dev-help@qpid.apache.org
[jira] [Commented] (QPID-4475) Web management plugin support for
PLAIN SASL mechanism
Posted by "Robbie Gemmell (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/QPID-4475?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13505783#comment-13505783 ]
Robbie Gemmell commented on QPID-4475:
--------------------------------------
Now merged to the 0.20 release branch.
> Web management plugin support for PLAIN SASL mechanism
> ------------------------------------------------------
>
> Key: QPID-4475
> URL: https://issues.apache.org/jira/browse/QPID-4475
> Project: Qpid
> Issue Type: Improvement
> Components: Java Broker
> Affects Versions: 0.21
> Reporter: Keith Wall
> Assignee: Rob Godfrey
> Fix For: 0.20, 0.21
>
>
> The web management module of the Java Broker should be enhanced to allow for the use of the PLAIN SASL mechanism. This would allow the web-management module to be used with the SimpleLDAPAuthenticationManager (which requires PLAIN as it must pass a clear-text password through to the LDAP server).
> If PLAIN is in-use, then the Broker should restrict the web management to a secure protocol in order to avoid the transmision of user password in clear-text across the wire.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@qpid.apache.org
For additional commands, e-mail: dev-help@qpid.apache.org
[jira] [Updated] (QPID-4475) Web management plugin support for
PLAIN SASL mechanism
Posted by "Keith Wall (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/QPID-4475?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Keith Wall updated QPID-4475:
-----------------------------
Description:
The web management module of the Java Broker should be enhanced to allow for the use of the PLAIN SASL mechanism. This would allow the web-management module to be used with the SimpleLDAPAuthenticationManager (which requires PLAIN as it must pass a clear-text password through to the LDAP server).
If PLAIN is in-use, then the Broker should restrict the web management to a secure protocol in order to avoid the transmision of user password in clear-text across the wire.
was:
The web management module of the Java Broker should be enhanced to allow for the use of the PLAIN SASL mechanism. This would allow the web-management module to be used with the SimpleLDAPAuthenticationManager (which requires PLAIN as it must pass a clear-text password through to the LDAP server).
If PLAIN is in-use, then the Broker should restrict the web management to a secure protocol in order to avoid the transmision of user password in clear-text across the wire.
Caused by: javax.security.sasl.SaslException: Unknown mechanism: CRAM-MD5
at org.apache.qpid.server.security.auth.manager.SimpleLDAPAuthenticationManager.createSaslServer(SimpleLDAPAuthenticationManager.java:193)
at org.apache.qpid.server.security.SubjectCreator.createSaslServer(SubjectCreator.java:74)
> Web management plugin support for PLAIN SASL mechanism
> ------------------------------------------------------
>
> Key: QPID-4475
> URL: https://issues.apache.org/jira/browse/QPID-4475
> Project: Qpid
> Issue Type: Improvement
> Components: Java Broker
> Affects Versions: 0.21
> Reporter: Keith Wall
>
> The web management module of the Java Broker should be enhanced to allow for the use of the PLAIN SASL mechanism. This would allow the web-management module to be used with the SimpleLDAPAuthenticationManager (which requires PLAIN as it must pass a clear-text password through to the LDAP server).
> If PLAIN is in-use, then the Broker should restrict the web management to a secure protocol in order to avoid the transmision of user password in clear-text across the wire.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@qpid.apache.org
For additional commands, e-mail: dev-help@qpid.apache.org
[jira] [Commented] (QPID-4475) Web management plugin support for
PLAIN SASL mechanism
Posted by "Robbie Gemmell (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/QPID-4475?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13504743#comment-13504743 ]
Robbie Gemmell commented on QPID-4475:
--------------------------------------
Change made in http://svn.apache.org/viewvc?rev=1414256&view=rev
> Web management plugin support for PLAIN SASL mechanism
> ------------------------------------------------------
>
> Key: QPID-4475
> URL: https://issues.apache.org/jira/browse/QPID-4475
> Project: Qpid
> Issue Type: Improvement
> Components: Java Broker
> Affects Versions: 0.21
> Reporter: Keith Wall
> Assignee: Robbie Gemmell
>
> The web management module of the Java Broker should be enhanced to allow for the use of the PLAIN SASL mechanism. This would allow the web-management module to be used with the SimpleLDAPAuthenticationManager (which requires PLAIN as it must pass a clear-text password through to the LDAP server).
> If PLAIN is in-use, then the Broker should restrict the web management to a secure protocol in order to avoid the transmision of user password in clear-text across the wire.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@qpid.apache.org
For additional commands, e-mail: dev-help@qpid.apache.org
[jira] [Updated] (QPID-4475) Web management plugin support for
PLAIN SASL mechanism
Posted by "Justin Ross (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/QPID-4475?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Justin Ross updated QPID-4475:
------------------------------
Fix Version/s: 0.21
0.20
> Web management plugin support for PLAIN SASL mechanism
> ------------------------------------------------------
>
> Key: QPID-4475
> URL: https://issues.apache.org/jira/browse/QPID-4475
> Project: Qpid
> Issue Type: Improvement
> Components: Java Broker
> Affects Versions: 0.21
> Reporter: Keith Wall
> Assignee: Rob Godfrey
> Fix For: 0.20, 0.21
>
>
> The web management module of the Java Broker should be enhanced to allow for the use of the PLAIN SASL mechanism. This would allow the web-management module to be used with the SimpleLDAPAuthenticationManager (which requires PLAIN as it must pass a clear-text password through to the LDAP server).
> If PLAIN is in-use, then the Broker should restrict the web management to a secure protocol in order to avoid the transmision of user password in clear-text across the wire.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@qpid.apache.org
For additional commands, e-mail: dev-help@qpid.apache.org