Irina Boverman created QPID-5815: ------------------------------------ Summary: Broker reports EXTERNAL mech. not supported if CN is empty Key: QPID-5815 URL: https://issues.apache.org/jira/browse/QPID-5815 Project: Qpid Issue Type: Bug Components: C++ Broker Affects Versions: 0.26 Environment: Linux/RHEL 6. Reporter: Irina Boverman Priority: Trivial
If EXTERNAL sasl mechanism is used for client authentication, the broker will extract the CN from the client's ssl certificate and use it as an 'authId' for sasl authentication. In a case when the client certificate is malformed (for example, a subject of the form "C=FR,O=SUNGARD,OU="CLEARVISION CN=GLKXV_GLKXVALBBDBGEN1""), the broker reports that it does not support EXTERNAL mechanism (this is a valid behaviour). However it would be helpful to see a message explaining why EXTERNAL mechanism is not available. -- This message was sent by Atlassian JIRA (v6.2#6252) --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@qpid.apache.org For additional commands, e-mail: dev-h...@qpid.apache.org