Tomasz Łukasiewicz created ARTEMIS-5316:
-------------------------------------------
Summary: Support for SASL XOAUTH2 Mechanism in Broker Connection
Key: ARTEMIS-5316
URL: https://issues.apache.org/jira/browse/ARTEMIS-5316
Project: ActiveMQ Artemis
Issue Type: New Feature
Reporter: Tomasz Łukasiewicz
There is a need to support XOAUTH2 authentication between two AMQP brokers, as
the existing mechanisms are not sufficiently secure for certain use cases.
Currently, Artemis does not support this authentication method on the client
side, and the SaslFactory implementation is both private and final, making it
impossible to extend.
To address this, an XOAuth2SASLMechanism should be implemented within the
AMQPBrokerConnection class and integrated into the SaslFactory. The new SASL
mechanism should return its name as "XOAUTH2" and include the appropriate
authentication headers.
A working example of this approach has been successfully tested with the Solace
broker:
{code:java}
@Override
public byte[] getInitialResponse() {
String response = String.format("user=%s\u0001auth=Bearer %s\u0001\u0001",
userName, token);
return response.getBytes(StandardCharsets.UTF_8);
}
{code}
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
For further information, visit: https://activemq.apache.org/contact
