[
https://issues.apache.org/jira/browse/PROTON-950?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14644842#comment-14644842
]
Andrew Stitcher edited comment on PROTON-950 at 7/28/15 6:48 PM:
-----------------------------------------------------------------
[I don't understand - the previous code didn't implement any mechanisms except
ANONYMOUS, how did PLAIN work?]
Oh - I see that (removed) method set the SASL INIT frame directly to a PLAIN
mechanism frame.
was (Author: astitcher):
I don't understand - the previous code didn't implement any mechanisms except
ANONYMOUS, how did PLAIN work?
> SASL PLAIN over cleartext should be supported
> ---------------------------------------------
>
> Key: PROTON-950
> URL: https://issues.apache.org/jira/browse/PROTON-950
> Project: Qpid Proton
> Issue Type: Bug
> Components: proton-c
> Affects Versions: 0.10
> Reporter: Ted Ross
> Assignee: Andrew Stitcher
> Priority: Blocker
> Fix For: 0.10
>
>
> In the current 0.10 alpha, if SASL PLAIN is selected, it will only work if
> the connection is encrypted (using SSL). This is a surprising change of
> behavior from earlier versions of Proton and it's arguable that a security
> policy like that should be left to the application using the Proton library.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
