Uploaded image for project: 'Compass '
  1. Compass
  2. COMPASS-851

Investigate Kerberos Authentication if the username contains @

XMLWordPrintableJSON

    • Type: Icon: Bug Bug
    • Resolution: Done
    • Priority: Icon: Major - P3 Major - P3
    • 1.16.0
    • Affects Version/s: 1.8.0-dev, 1.15.4
    • Component/s: Connectivity
    • Labels:
      None
    • 2
    • Iteration Guacamole, Iteration Qbert

      From COMPASS-745, it looks like Kerberos and X.509 are also likely to double-encode their auth-component in the same way LDAP does.

      This ticket should:

      1. Confirm if this is true, e.g. with https://docs.mongodb.com/v3.2/tutorial/control-access-to-mongodb-with-kerberos-authentication/

      2. If so, add a regression test in connection-model.
      3. Remove all redundant encodeURIComponent calls, including in comments to make it clearer that url.format already handles this even better than we could (git blame reveals it has been optimised for more performance).

        1. A double-urlencoded Kerberos principal does appear to be decoded correctly in the node driver.png
          A double-urlencoded Kerberos principal does appear to be decoded correctly in the node driver.png
          171 kB

            Assignee:
            durran.jordan@mongodb.com Durran Jordan
            Reporter:
            peter.schmidt Peter Schmidt
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Created:
              Updated:
              Resolved: