Uploaded image for project: 'Documentation'
  1. Documentation
  2. DOCS-12175

Docs for SERVER-37815: Support multiple keys in the keyfile format

    XMLWordPrintableJSON

Details

    Description

      Description

      Description:

      The file specified by the --keyFile or security.keyFile option is now a YAML file instead of a plain text file. This should be fully backwards compatible with old keys and all the same rules about key formats (base64 characters only with whitespace stripped) are still in place, but the underlying file format is YAML now (i.e. you could escape characters or even add comments) . This is in preparation for supporting multiple keys during the keyfile rollover procedure.

      Engineering Ticket Description:

      As part of the keyfile rollover project we'll need to support loading multiple keys from disk. This ticket changes the format of the keyfile to YAML to support that.

      Scope of changes

      • The usual
      • note that keyfile for local key management only accepts one key

      Impact to Other Docs

      MVP (Work and Date)

      Resources (Scope or Design Docs, Invision, etc.)

      Attachments

        Activity

          People

            kay.kim@mongodb.com Kay Kim (Inactive)
            kay.kim@mongodb.com Kay Kim (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:
              5 years, 12 weeks, 6 days ago