Uploaded image for project: 'MINA SSHD'
  1. MINA SSHD
  2. SSHD-231

Failed authentication method isnt removed from list of allowed methods

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Resolved
    • Minor
    • Resolution: Fixed
    • 0.7.0
    • 0.9.0
    • None

    Description

      Hi,
      Whilst investigating an authentication problem with a client connection I've noticed that the code which removes failed authentication methods from the list of allowed methods always specifies "none", instead of the actual method which failed.

      Code from ServerSession.userAuth method :

      NamedFactory.Utils.remove(userAuthFactories, "none"); // 'none' MUST NOT be listed

      instead I would expect the actual method to be removed, i.e. :

      NamedFactory.Utils.remove(userAuthFactories, method);

      I'm not sure if this is by design or not ?

      Thanks

      Attachments

        Issue Links

          is part of

          New Feature - A new feature of the product, which has yet to be developed. SSHD-234 Support partial authentication

          • Major - Major loss of function.
          • Resolved

          Activity

            People

              gnodet Guillaume Nodet
              nculver Neil Culver
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: