Uploaded image for project: 'C Driver'
  1. C Driver
  2. CDRIVER-2669

APM events for auth commands

    XMLWordPrintableJSON

Details

    • Icon: Bug Bug
    • Resolution: Unresolved
    • Icon: Minor - P4 Minor - P4
    • None
    • None
    • libmongoc

    Description

      The command monitoring spec implies we should generate events for auth commands, and redact the sensitive information:

      Some commands and replies will contain sensitive data and in order to not risk the leaking of this data to external sources or logs their commands AND replies MUST be redacted from the events. The value MUST be replaced with an empty BSON document. The list is as follows:

      I interpret this to mean the saslStart command should still generate corresponding APM events, but strip the reply documents of any potentially sensitive information.

      Attachments

        Activity

          People

            Unassigned Unassigned
            kevin.albertson@mongodb.com Kevin Albertson
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

              Created:
              Updated: