Details
-
Bug
-
Status: Closed
-
Major
-
Resolution: Won't Fix
-
0.18, 0.32
-
None
Description
In Qpid Broker-J 0.18..0.32 the when connecting to the HTTP port, it is possible to trick the port into using an authentication provider other than the one configured on the port. This becomes an issue if many authentication providers are configured and one offers less trust than another.
This was resolved in Qpid Broker-J v6.0.0 and above.
Attachments
Issue Links
- links to