Implement SCRAM support

Description

RFC 6120 makes SCRAM mandatory. Openfire currently lacks this SASL Auth Mechanism
http://xmpp.org/rfcs/rfc6120.html#security-mti-auth

Environment

None

Linked work items

is related to

SMACK-398

Implement SCRAM support

OF-750

Store passwords as hashes

OF-959

Database installation script does not set correct version

OF-2160

Investigate suspicious code in LDAP authPassword implementation

Activity

Show:

Florian Schmaus October 20, 2014 at 5:59 PM

Smack will/has become SCRAM support in SMACK-398. Since SASL SCRAM is not part of the Java platform (at the time of writing), I'm sure we could harvest some code from Smack's SCRAM implementation to use it for Openfire.

Resize issue view side panel

Fixed

Details
Assignee
Dave Cridland
Reporter
Florian Schmaus
Labels
sasl
Fix versions
4.0.0
Priority
Major

Created February 24, 2013 at 9:37 AM

Updated December 8, 2020 at 10:41 AM

Resolved December 7, 2015 at 2:15 PM

Implement SCRAM support

Description

Environment

Linked work items

is related to

Activity

Florian Schmaus October 20, 2014 at 5:59 PM

DetailsAssigneeDave CridlandDave CridlandReporterFlorian SchmausFlorian SchmausLabelssaslFix versions4.0.0PriorityMajor

Details

Assignee

Reporter

Labels

Fix versions

Priority

Details
Assignee
Dave Cridland
Reporter
Florian Schmaus
Labels
sasl
Fix versions
4.0.0
Priority
Major