[rabbitmq-discuss] Creating an auth plugin (Kerberos)

Simon Lundström simlu at su.se
Wed Nov 28 10:53:38 GMT 2012


On Wed, 2012-11-28 at 10:35:21 +0000, Simon MacMullen wrote:
> When running 3.x you could just reject all passwordless auth
> requests. Any federation / shovel local connections would have to be
> to a user supplied by another auth backend, e.g. the internal one.
> Since there's usually only one such user anyway that shouldn't be
> too big a deal.
> 
> But with 2.x you would reject all mgmt/stomp connections as well.
> Another reason to upgrade...

I see, I'll reject all requests when password in undefined and make a
note of this in the README.

Many thanks again!
- Simon


More information about the rabbitmq-discuss mailing list