Uploaded image for project: 'WildFly Elytron'
  1. WildFly Elytron
  2. ELY-770

Review SASL mechanism handling of isComplete()

XMLWordPrintable

    • Icon: Task Task
    • Resolution: Won't Do
    • Icon: Critical Critical
    • 1.1.0.CR2
    • None
    • SASL
    • None

      The javadoc of the isComplete() method states: -

      Determines whether the authentication exchange has completed. This method is typically called after each invocation of evaluateResponse() to determine whether the authentication has completed successfully or should be continued.

      Also getAuthorizationID() states: -

      _Reports the authorization ID in effect for the client of this session. This method can only be called if isComplete() returns true.
      _

      Although the former is very vague there just seem to be a suggestion that complete means successfully complete, our mechs are setting complete very early and other wrappers such as AuthenticationCompleteCallbackSaslServerFactory are using complete as a flag to report failures.

              Unassigned Unassigned
              darran.lofthouse@redhat.com Darran Lofthouse
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Created:
                Updated:
                Resolved: