[jboss-jira] [JBoss JIRA] (ELY-1185) Only the last mechanism selector is used in Elytron client configuration
Darran Lofthouse (JIRA)
issues at jboss.org
Wed May 24 13:19:00 EDT 2017
[ https://issues.jboss.org/browse/ELY-1185?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Darran Lofthouse reassigned ELY-1185:
-------------------------------------
Assignee: Chao Wang (was: Darran Lofthouse)
> Only the last mechanism selector is used in Elytron client configuration
> ------------------------------------------------------------------------
>
> Key: ELY-1185
> URL: https://issues.jboss.org/browse/ELY-1185
> Project: WildFly Elytron
> Issue Type: Bug
> Affects Versions: 1.1.0.Beta42
> Reporter: Ondrej Lukas
> Assignee: Chao Wang
> Priority: Critical
>
> When Elytron client configuration file includes {{sasl-mechanism-selector}} with string which contains more mechanisms then only the last mentioned mechanism is used. In correct behavior it should use all given mechanisms in given order, see [1].
> In case when the last given mechanism is supported by server then it tries to authenticate, otherwise no mechanism is used to attempt to authenticate.
> For example, following element for selector can be used in Elytron client configuration file:
> {code}
> <sasl-mechanism-selector selector="PLAIN DIGEST-MD5 ANONYMOUS JBOSS-LOCAL-USER"/>
> {code}
> When only {{DIGEST-MD5}} is supported by server then it works only if {{DIGEST-MD5}} is the last mechanism in selector string.
> [1] https://issues.jboss.org/browse/EAP7-567?focusedCommentId=13408238&page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel#comment-13408238
--
This message was sent by Atlassian JIRA
(v7.2.3#72005)
More information about the jboss-jira
mailing list