[jira] [Commented] (QPID-6109) qpid.messaaging builtin PLAIN auth does not agree on auth mechanism if password is None or ''

[ASF subversion and git services (JIRA)]

    [ 
https://issues.apache.org/jira/browse/QPID-6109?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14140741#comment-14140741
 ] 

ASF subversion and git services commented on QPID-6109:
-------------------------------------------------------

Commit 1626249 from [~gsim] in branch 'qpid/trunk'
[ https://svn.apache.org/r1626249 ]

QPID-6109: don't require password to be specified to allow PLAIN

> qpid.messaaging builtin PLAIN auth does not agree on auth mechanism if 
> password is None or ''
> ---------------------------------------------------------------------------------------------
>
>                 Key: QPID-6109
>                 URL: https://issues.apache.org/jira/browse/QPID-6109
>             Project: Qpid
>          Issue Type: Bug
>          Components: Python Client
>    Affects Versions: 0.26
>         Environment: rpm -qa | grep sasl | sort
> cyrus-sasl-2.1.26-14.fc20.x86_64
> cyrus-sasl-devel-2.1.26-14.fc20.x86_64
> cyrus-sasl-gssapi-2.1.26-14.fc20.x86_64
> cyrus-sasl-lib-2.1.26-14.fc20.x86_64
> cyrus-sasl-md5-2.1.26-14.fc20.x86_64
> cyrus-sasl-plain-2.1.26-14.fc20.x86_64
> cyrus-sasl-scram-2.1.26-14.fc20.x86_64
> erlang-sasl-R16B-03.7.fc20.x86_64
> qpid-cpp-server-0.26-13.fc20.x86_64
>            Reporter: Brian Bouterse
>            Priority: Minor
>
> If I have the broker configured with --auth yes, it correctly advertises auth 
> mechanisms: ['ANONYMOUS', 'PLAIN'].
> If I run the following python code to connect using an empty password with 
> username 'guest' and only allowing 'PLAIN' I expect to get an "Authentication 
> failed(320)", but instead I receive a "sasl negotiation failed: no mechanism 
> agreed".
> from qpid.messaging import Connection
> info = { 'username': 'guest', 'sasl_mechanisms': 'PLAIN', 'host': 
> '127.0.0.1', 'timeout': 4, 'password': '', 'port': 5672, 'transport': 'tcp'}
> Connection.establish(**info)
> I also get the sasl negotiation failed with this code:
> from qpid.messaging import Connection
> info = { 'username': 'guest', 'sasl_mechanisms': 'PLAIN', 'host': 
> '127.0.0.1', 'timeout': 4, 'password': None, 'port': 5672, 'transport': 'tcp'}
> Connection.establish(**info)
> I am using the builtin auth and not the saslwrapper auth because I do not 
> have the packages 'saslwraper' and 'python-saslwrapper' installed.
> I expected that a username='guest' and password=None or password='' should 
> still agree on PLAIN and continue to try to authentication. This is also 
> similar to the behavior of saslwrapper.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@qpid.apache.org
For additional commands, e-mail: dev-h...@qpid.apache.org