Do not require authzid on SASL EXTERNAL for S2S

Description

The XMPP specifications in RFC 6120, section 6.3.8. “Authorization Identity” specify that during SASL negotiation, an authorization identity is not required:

An authorization identity is an OPTIONAL identity included by the initiating entity to specify an identity to act as (see Section 2 of [SASL]).

Openfire currently requires an authorization identity (that matches the stream’s “from” attribute value) to be provided. It should not.

Environment

None

Activity

Show:

Guus der Kinderen September 7, 2023 at 1:35 PM

This has been addressed in .

Duplicate

Details

Assignee

Reporter

Components

Fix versions

Priority

Created October 1, 2022 at 12:07 PM
Updated September 7, 2023 at 1:35 PM
Resolved September 7, 2023 at 1:35 PM