Uploaded image for project: 'Qpid JMS'
  1. Qpid JMS
  2. QPIDJMS-372

[SASL] [XOAUTH2] Access token validation too restrictive

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Closed
    • Major
    • Resolution: Fixed
    • 0.31.0
    • 0.32.0
    • qpid-jms-client
    • None

    Description

      http://qpid.2158936.n2.nabble.com/VOTE-Release-Apache-Qpid-JMS-0-31-0-td7674038.html

      Google's access_tokens from /oauth2/v4/token use characters drawn from
      outside Base64's 64 character set. RFC 6749[1] defines an
      access_token element as within %x20-7E, so the code within
      org.apache.qpid.jms.sasl.XOauth2Mechanism#isApplicable is too
      restrictive.

      [1] https://tools.ietf.org/html/rfc6749

      Attachments

        Issue Links

          relates to

          Improvement - An improvement or enhancement to an existing feature or task. QPIDJMS-367 Add support for XOAUTH2 SASL authentication mechanism

          • Major - Major loss of function.
          • Closed
          links to

          Web Link GitHub Pull Request #16

          Activity

            People

              robbie Robbie Gemmell
              kwall Keith Wall
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: