Here is the summary till now -
Hello -
Afterhaving researched all the forums, I have still not been able to getPlain SASL authentication to work with BOSH + Strophe + Openfire 3.7.
IfI enter a garbled username i.e. user name without the @domain, theclient quickly chooses anonymous auth and gives anonymous session. Butif I enter right username@domain, it stalls after receiving the sessionfrom the server and mechanism as PLAIN (disabled all other mechanism onthe server). If I enable all mechanism on the server, it uses MD5 andit again fails because passwords are plain text.
Here are the relevant client logs
Stropheis connecting.LOG: _throttledRequestHandler called with 1 requestsLOG:request id 1.0 postingLOG: request id 1.0 state changed to 1SEND:<body rid=‘310097613’ xmlns=‘http://jabber.org/protocol/httpbind’to='ec2-50-16-41-243.compute-1.amazonaws.com’ xml:lang=‘en’ wait='60’hold=‘1’ content=‘text/xml; charset=utf-8’ ver=‘1.6’ xmpp:version='1.0’xmlns:xmpp=‘urn:xmpp:xbosh’/>LOG: request id 1.1 state changed to2LOG: request id 1.1 state changed to 3LOG: request id 1.1 statechanged to 4LOG: removing requestLOG: _throttledRequestHandler calledwith 0 requestsLOG: request id 1 should now be removedLOG: request id1.1 got 200
LOG: _connect_cb was called
RECV:<body xmlns=‘http://jabber.org/protocol/httpbind’xmlns:stream='http://etherx.jabber.org/strea ms’ authid='d20af63d’sid=‘d20af63d’ secure=‘true’ requests=‘2’ inactivity=‘30’ polling='5’wait=‘60’ hold=‘1’ ack=‘310097613’ maxpause='300’ver=‘1.6’>stream:features<mechanismsxmlns=‘urn:ietf:params:xml: ns:xmpp-sasl’>PLAIN<compressionxmlns=‘http://jabber.org/features/compress’>zlib<bindxmlns=‘urn:ietf:params:xml:ns:xmpp-bin d’/><sessionxmlns=‘urn:ietf:params:xml:ns:xmpp-session’/></stream:features></bod y>
Server logs -
ThuMar 17 12:43:16 EDT 2011: HTTP RECV(d20af63d): <bodyxmlns:xmpp=“urn:xmpp:xbosh” rid="310097613"to=“ec2-50-16-41-243.compute-1.amazonaws.com” xml:lang=“en” wait="60"hold=“1” content=“text/xml; charset=utf-8” ver="1.6"xmpp:version=“1.0”>
Thu Mar 17 12:43:16 EDT 2011:HTTP SENT(d20af63d): <bodyxmlns="http://jabber.org/protocol/httpbind"xmlns:stream=“http://etherx.jabber.org/streams” authid="d20af63d"sid=“d20af63d” secure=“true” requests=“2” inactivity=“30” polling="5"wait=“60” hold=“1” ack=“310097613” maxpause="300"ver=“1.6”>stream:features<mechanismsxmlns=“urn:ietf:params:xml: ns:xmpp-sasl”>PLAIN<compressionxmlns=“http://jabber.org/features/compress”>zlib<bindxmlns=“urn:ietf:params:xml:ns:xmpp-bin d”/><sessionxmlns=“urn:ietf:params:xml:ns:xmpp-session”/></stream:features></bod y>
Itis very strange that if server advertises only Plain as auth mechanism,the client just halts and does not send the auth request on sessionprovided by the server.
Any ideas.
Thanks,
Himanshu