Uploaded image for project: 'Qpid Proton'
  1. Qpid Proton
  2. PROTON-553

Proton-C does not URLdecode password before doing SASL-PLAIN

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Closed
    • Major
    • Resolution: Fixed
    • proton-0.7
    • proton-0.7
    • proton-c
    • None

    Description

      This is a serious issue using Proton-C against ServiceBus because our passwords are base64-encoded keys and frequently contain '/'. Previous versions of Proton-C didn't care about technically illegal forward slashes in the URL, but 0.7 sure does. URL encoding the password gets around that, but then the encoded password is presented to our broker and is rejected. Since Proton is the one dealing with a URL and enforcing URL rules, it should do the decoding before passing the pieces on to other layers.

      Attachments

        1. sasl.c
          1 kB
          James Birdsall

        Issue Links

          relates to

          Bug - A problem which impairs or prevents the functions of the product. PROTON-995 Url fails to parse URL

          • Major - Major loss of function.
          • Closed

          Activity

            People

              rhs Rafael H. Schloming
              j.birdsall James Birdsall
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: