[openamq-dev] QPid / Python / OpenAMQ
Martin Sustrik
sustrik at imatix.com
Thu Jan 24 22:32:09 CET 2008
> response={"LOGIN": user, "PASSWORD": password}
>
> to:
>
> response='\0' + user + '\0' + password
>
Yup, we know that this distinction exists.
AMQP requires that this field is SASL-compliant. RFC4616, defining SASL
PLAIN mechanism states: "The client presents the authorization identity
(identity to act as), followed by a NUL (U+0000) character, followed by
the authentication identity (identity whose password will be used),
followed by a NUL (U+0000) character, followed by the clear-text password."
Thus we believe the later solution is the one that adheres to AMQP specs
more closely.
Martin
More information about the openamq-dev
mailing list