Ted Ross created QPID-6666:
------------------------------
Summary: When --auth=no is configured, broker offers ANONYMOUS and
PLAIN mechanisms
Key: QPID-6666
URL: https://issues.apache.org/jira/browse/QPID-6666
Project: Qpid
Issue Type: Bug
Components: C++ Broker
Reporter: Ted Ross
When the auth=no configuration option is in effect (authentication disabled),
the broker offers both ANONYMOUS and PLAIN mechanisms over AMQP 0-10 regardless
of how SASL is configured outside the broker.
This can cause problems with clients that choose the PLAIN mechanism and go to
lengths (prompting, etc.) to get the username and password only to have them
ignored by the broker.
I think the broker should only offer ANONYMOUS if authentication is disabled.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
