Red Hat Bugzilla – Bug 498104
GSSAPI/SASL security layer - no support for rekeying
Last modified: 2013-02-24 16:59:09 EST
When the GSSAPI security context expires on a running connection (i.e. when
Kerberos ticket expires), communication to the broker on that connection becomes impossible.
To avoid this there would need to be a new sasl exchange introduced to renegotiate a new key before the old one expires. (This is an isue for the AMQP protocol in general).