Historically the server has sent auth_required as part of the INFO protocol to let the clients be aware that authentication is configured in the server. Currently some clients use this flag to decide whether it is required to send credentials or not, whereas others simply send creds on CONNECT in case credentials have been configured in the client.
When no_auth_user is configured in the server as part of 2.9.8 release, the server now no longer sends auth_required so clients that used the flag may not be sending their credentials.
The decision here is to update the clients to always send their credentials on CONNECT whenever they are configured regardless of the auth_required value.
Overview
Historically the server has sent
auth_required
as part of theINFO
protocol to let the clients be aware that authentication is configured in the server. Currently some clients use this flag to decide whether it is required to send credentials or not, whereas others simply send creds onCONNECT
in case credentials have been configured in the client. Whenno_auth_user
is configured in the server as part of 2.9.8 release, the server now no longer sendsauth_required
so clients that used the flag may not be sending their credentials.auth_required