Default token params should not include a capabilities member #576
Comments
SimonWoolf
added
the
bug
|
@SimonWoolf see https://github.com/ably/realtime/issues/780. I am not sure I agree that request is wrong TBH. This is a bit contentious. |
|
@ricardopereira FYI: me Matt and Paddy discussed this (and Matt's concerns) today. We are going to put a workaround in realtime for this, and will be discussing deeper changes, but as far as iOS is concerned, this bug is correct, it should not be sending a |
|
@SimonWoolf Is this still happening? |
|
@funkyboy I don't have a mac so can't verify directly, but the code in question doesn't appear to have been changed since I submitted this issue, so I assume it is still happening. It's not that big a problem since we rewrote capability intersection in realtime to be commutative. But ably-ios behaviour is still wrong per the spec -- https://docs.ably.io/client-lib-development-guide/features/#RSA6 -- so should be fixed. |
|
@ricardopereira is there any update on this? This bug is two years old now, and is still causing customers problems from time to time. Additionally, ably-ios is not properly encoding the capability in the query string e.g. Additionally, ably-ios is generating a
|
By default, if using token auth (e.g. because they've specified a clientId), the lib is requesting a token with capabilities of
"{\"*\":[\"*\"]}", see https://github.com/ably/ably-ios/blob/master/Source/ARTTokenParams.m#L32This is wrong: it fails if someone is using a key with capabilities restricted to a subset of channels. (The user gets a
Key does not support requested capabilitieserror right after initializing the library, which is a pretty bad user experience).When no capability is specified by the user in defaultTokenParams, the token request should be sent with no
capabilitymember.(RSA6 may be misleading, I'll file a docs issue)
The text was updated successfully, but these errors were encountered: