You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@qpid.apache.org by "Lorenz Quack (JIRA)" <ji...@apache.org> on 2015/06/23 18:41:00 UTC

[jira] [Created] (QPID-6606) Document the Java Broker's AuthenticationProviders' behaviour regarding authentication mechanisms

Lorenz Quack created QPID-6606:
----------------------------------

             Summary: Document the Java Broker's AuthenticationProviders' behaviour regarding authentication mechanisms
                 Key: QPID-6606
                 URL: https://issues.apache.org/jira/browse/QPID-6606
             Project: Qpid
          Issue Type: Improvement
          Components: Documentation, Java Broker
            Reporter: Lorenz Quack
         Attachments: docs-secureonlymechanisms.diff

The accepted authentication mechanisms of the AuthenticationProviders depend on the underlying transport. Notably, PLAIN is not accepted if the transport is not secured/encrypted.
This is a security feature to prevent passwords being transfered in the clear.
However, there is a way to override this and both these facts should be documented.

This was discussed on the mailing list: http://qpid.2158936.n2.nabble.com/Runnig-python-examples-td7626255.html



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@qpid.apache.org
For additional commands, e-mail: dev-help@qpid.apache.org