Description
This JIRA refers to Proton(-C) only. Analogous work was already carried out for Proton-J under PROTON-1486.
The Proton Engine API provides no mechanism for getting or setting the additional-data field on sasl-outcome.
Some SASL mechanisms (e.g. SCRAM-SHA-*) send additional data along with the outcome (in the case of SCRAM-SHA-* the additional data is a proof that the server is also aware of the credentials and is not simply just accepting any credential data as part of some sort of attack).
One approach for the API would be to expose the additional-data field using the send/recv/pending methods used for exchanging the challenge/response in the earlier phases of the sasl exchange.
Attachments
Issue Links
- is a clone of
-
PROTON-1486 no mechanism to get or set the additional-data field on sasl-outcome
- Closed