[jboss-jira] [JBoss JIRA] (ELY-1185) Only the last mechanism selector is used in Elytron client configuration
Jan Kalina (JIRA)
issues at jboss.org
Wed May 24 10:26:00 EDT 2017
[ https://issues.jboss.org/browse/ELY-1185?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13411389#comment-13411389 ]
Jan Kalina commented on ELY-1185:
---------------------------------
Already resolved by https://github.com/wildfly-security/wildfly-elytron/pull/827 (ELY-1184), will be only test-covered.
> Only the last mechanism selector is used in Elytron client configuration
> ------------------------------------------------------------------------
>
> Key: ELY-1185
> URL: https://issues.jboss.org/browse/ELY-1185
> Project: WildFly Elytron
> Issue Type: Bug
> Affects Versions: 1.1.0.Beta42
> Reporter: Ondrej Lukas
> Assignee: Darran Lofthouse
> Priority: Critical
>
> When Elytron client configuration file includes {{sasl-mechanism-selector}} with string which contains more mechanisms then only the last mentioned mechanism is used. In correct behavior it should use all given mechanisms in given order, see [1].
> In case when the last given mechanism is supported by server then it tries to authenticate, otherwise no mechanism is used to attempt to authenticate.
> For example, following element for selector can be used in Elytron client configuration file:
> {code}
> <sasl-mechanism-selector selector="PLAIN DIGEST-MD5 ANONYMOUS JBOSS-LOCAL-USER"/>
> {code}
> When only {{DIGEST-MD5}} is supported by server then it works only if {{DIGEST-MD5}} is the last mechanism in selector string.
> [1] https://issues.jboss.org/browse/EAP7-567?focusedCommentId=13408238&page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel#comment-13408238
--
This message was sent by Atlassian JIRA
(v7.2.3#72005)
More information about the jboss-jira
mailing list