[jboss-jira] [JBoss JIRA] (ELY-1185) Only the last mechanism selector is used in Elytron client configuration
Ondrej Lukas (JIRA)
issues at jboss.org
Mon May 22 12:29:00 EDT 2017
Ondrej Lukas created ELY-1185:
---------------------------------
Summary: Only the last mechanism selector is used in Elytron client configuration
Key: ELY-1185
URL: https://issues.jboss.org/browse/ELY-1185
Project: WildFly Elytron
Issue Type: Bug
Reporter: Ondrej Lukas
Assignee: Darran Lofthouse
Priority: Critical
When Elytron client configuration file includes {{sasl-mechanism-selector}} with string which contains more mechanisms then only the last mentioned mechanism is used. In correct behavior it should use all given mechanisms in given order, see [1].
In case when the last given mechanism is supported by server then it tries to authenticate, otherwise no mechanism is used to attempt to authenticate.
For example, following element for selector can be used in Elytron client configuration file:
{code}
<sasl-mechanism-selector selector="PLAIN DIGEST-MD5 ANONYMOUS JBOSS-LOCAL-USER"/>
{code}
When only {{DIGEST-MD5}} is supported by server then it works only if {{DIGEST-MD5}} is the last mechanism in selector string.
[1] https://issues.jboss.org/browse/EAP7-567?focusedCommentId=13408238&page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel#comment-13408238
--
This message was sent by Atlassian JIRA
(v7.2.3#72005)
More information about the jboss-jira
mailing list