You are viewing a plain text version of this content. The canonical link for it is here.
Posted to proton@qpid.apache.org by "James Birdsall (JIRA)" <ji...@apache.org> on 2014/04/03 00:34:17 UTC
[jira] [Created] (PROTON-553) Proton-C does not URLdecode password
before doing SASL-PLAIN
James Birdsall created PROTON-553:
-------------------------------------
Summary: Proton-C does not URLdecode password before doing SASL-PLAIN
Key: PROTON-553
URL: https://issues.apache.org/jira/browse/PROTON-553
Project: Qpid Proton
Issue Type: Bug
Components: proton-c
Affects Versions: 0.7
Reporter: James Birdsall
This is a serious issue using Proton-C against ServiceBus because our passwords are base64-encoded keys and frequently contain '/'. Previous versions of Proton-C didn't care about technically illegal forward slashes in the URL, but 0.7 sure does. URL encoding the password gets around that, but then the encoded password is presented to our broker and is rejected. Since Proton is the one dealing with a URL and enforcing URL rules, it should do the decoding before passing the pieces on to other layers.
--
This message was sent by Atlassian JIRA
(v6.2#6252)