[QPID-4462] [Java Broker] SimpleLDAPAuthenticationManager does not register SASL mechanism PLAIN - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: 0.18, 0.19, 0.20, 0.21
Fix Version/s: 0.22
Component/s: Broker-J
Labels:
- LDAP

Description

If the user tries to configure only the simple-ldap-auth-manager, client see the following exception on attempting to connect.

javax.jms.JMSException: Error creating connection: Error: Unable to create SASL Server:PLAIN
	at org.apache.qpid.client.AMQConnectionFactory.createConnection(AMQConnectionFactory.java:125)
	at org.apache.qpid.example.Hello.runTest(Hello.java:51)
	at org.apache.qpid.example.Hello.main(Hello.java:40)

The issue is that SimpleLDAPAuthenticationManager is omitting to register the PLAIN SASL mechanism.

The user can workaround the issue by configuring a plain pd-auth-manager, (which causes the SASL mechanism to be registered) and specifying a default-auth-manager of SimpleLDAPAuthenticationManager as illustrated below:

<default-auth-manager>SimpleLDAPAuthenticationManager</default-auth-manager>
<pd-auth-manager>
  <principal-database>  <class&gt;org.apache.qpid.server.security.auth.database.PlainPasswordFilePrincipalDatabase</class&gt;
    <attributes>
       <attribute>
         <name>passwordFile</name>
         <value>${conf}/emptypasswd</value>
       </attribute>
    </attributes>
  </principal-database>
</pd-auth-manager>

Attachments

Activity

People

Assignee:: Robbie Gemmell

Reporter:: Keith Wall

Votes:: 0 Vote for this issue

Watchers:: 4 Start watching this issue

Dates

Created:: 23/Nov/12 11:40

Updated:: 11/Feb/15 20:06

Resolved:: 01/Apr/13 12:50