You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@activemq.apache.org by "ASF GitHub Bot (Jira)" <ji...@apache.org> on 2020/11/05 15:02:00 UTC

[jira] [Work logged] (ARTEMIS-2971) outgoing 'server-connection' doesnt support ANONYMOUS or EXTERNAL SASL mechanisms

     [ https://issues.apache.org/jira/browse/ARTEMIS-2971?focusedWorklogId=508149&page=com.atlassian.jira.plugin.system.issuetabpanels:worklog-tabpanel#worklog-508149 ]

ASF GitHub Bot logged work on ARTEMIS-2971:
-------------------------------------------

                Author: ASF GitHub Bot
            Created on: 05/Nov/20 15:01
            Start Date: 05/Nov/20 15:01
    Worklog Time Spent: 10m 
      Work Description: gemmellr opened a new pull request #3330:
URL: https://github.com/apache/activemq-artemis/pull/3330


   add ANONYMOUS and EXTERNAL SASL mechanism support for outgoing AMQP server connections.
   
   Uses a vertx-proton based test server to validate the connection behaviour. This could be be similarly used to better test a lot of the connection behaviour of the broker-connection functionality. E.g validating the specific behaviours it does when using the 'peer' connection type, without needing a Dispatch server.


----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

For queries about this service, please contact Infrastructure at:
users@infra.apache.org


Issue Time Tracking
-------------------

            Worklog Id:     (was: 508149)
    Remaining Estimate: 0h
            Time Spent: 10m

> outgoing 'server-connection' doesnt support ANONYMOUS or EXTERNAL SASL mechanisms
> ---------------------------------------------------------------------------------
>
>                 Key: ARTEMIS-2971
>                 URL: https://issues.apache.org/jira/browse/ARTEMIS-2971
>             Project: ActiveMQ Artemis
>          Issue Type: Bug
>    Affects Versions: 2.16.0
>            Reporter: Robbie Gemmell
>            Assignee: Clebert Suconic
>            Priority: Major
>          Time Spent: 10m
>  Remaining Estimate: 0h
>
> The broker supports using ANONYMOUS and EXTERNAL (and PLAIN) SASL mechanisms for connecting AMQP clients to the broker. However, it doesnt support either for the outgoing 'server-connection' feature to have the broker establish connections to other servers. This means an Artemis broker may be unable to connect to another Artemis broker using this feature, depending on its configuration.
> The broker currently only supports using PLAIN if a user+pass is supplied for the outgoing connection, or using a raw AMQP (no SASL) connection if no user+pass is supplied. This means the broker cant connect to a server unless it either offers PLAIN, or accepts bare AMQP without SASL auth (which some dont, e.g I think ActiveMQ 5 by default at least).
>  
> EXTERNAL is going to be fairly desirable for such use cases. Using SASL ANONYMOUS for connections without user+pass/EXTERNAL woud be a more typical default, but it should at least be supported if not the default.



--
This message was sent by Atlassian Jira
(v8.3.4#803005)