[jira] [Updated] (PROTON-1518) Proton provides no mechanism to get or set the additional-data field on sasl-outcome

[Keith Wall (JIRA)]

     [ 
https://issues.apache.org/jira/browse/PROTON-1518?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Keith Wall updated PROTON-1518:
-------------------------------
    Description: 
This JIRA refers to 
The Proton Engine API provides no mechanism for getting or setting the 
additional-data field on sasl-outcome.

Some SASL mechanisms (e.g. SCRAM-SHA-\*) send additional data along with the 
outcome (in the case of SCRAM-SHA-\* the additional data is a proof that the 
server is also aware of the credentials and is not simply just accepting any 
credential data as part of some sort of attack).

One approach for the API would be to expose the additional-data field using the 
send/recv/pending methods used for exchanging the challenge/response in the 
earlier phases of the sasl exchange.

  was:
The Proton Engine API provides no mechanism for getting or setting the 
additional-data field on sasl-outcome.

Some SASL mechanisms (e.g. SCRAM-SHA-\*) send additional data along with the 
outcome (in the case of SCRAM-SHA-\* the additional data is a proof that the 
server is also aware of the credentials and is not simply just accepting any 
credential data as part of some sort of attack).

One approach for the API would be to expose the additional-data field using the 
send/recv/pending methods used for exchanging the challenge/response in the 
earlier phases of the sasl exchange.


> Proton provides no mechanism to get or set the additional-data field on 
> sasl-outcome
> ------------------------------------------------------------------------------------
>
>                 Key: PROTON-1518
>                 URL: https://issues.apache.org/jira/browse/PROTON-1518
>             Project: Qpid Proton
>          Issue Type: Bug
>          Components: proton-j
>    Affects Versions: proton-j-0.19.0
>            Reporter: Keith Wall
>            Assignee: Keith Wall
>             Fix For: proton-j-0.20.0
>
>
> This JIRA refers to 
> The Proton Engine API provides no mechanism for getting or setting the 
> additional-data field on sasl-outcome.
> Some SASL mechanisms (e.g. SCRAM-SHA-\*) send additional data along with the 
> outcome (in the case of SCRAM-SHA-\* the additional data is a proof that the 
> server is also aware of the credentials and is not simply just accepting any 
> credential data as part of some sort of attack).
> One approach for the API would be to expose the additional-data field using 
> the send/recv/pending methods used for exchanging the challenge/response in 
> the earlier phases of the sasl exchange.



--
This message was sent by Atlassian JIRA
(v6.4.14#64029)

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@qpid.apache.org
For additional commands, e-mail: dev-h...@qpid.apache.org