Uploaded image for project: 'Documentation'
  1. Documentation
  2. DOCS-9255

Documentation for BI-265: Support pass-through authentication from proxy client to MongoDB

    XMLWordPrintableJSON

Details

    • Icon: Task Task
    • Resolution: Done
    • Icon: Critical - P2 Critical - P2
    • None
    • None
    • BI Connector
    • None

    Description

      Engineering Ticket Description:

      Add support for MONGODB-CR, SCRAM-SHA-1, and PLAIN mechanisms, including an option for no authentication.

      By default, authentication is disabled. To turn on auth, use the --auth command line option:

            --auth                                  use authentication/authorization ('sslPEMKeyFile' is required when using auth)
      

      Note that SSL from the client to mongosqld will be required when authentication is enabled.

      The default authentication mechanism is SCRAM-SHA-1. The default authentication source is the current database (e.g. as specified on the mysql shell command line).

      To override either of these defaults, a convention is used to tack them on as suffixes to the user name as query parameters. The syntax is:

      jeff_yemin?mechanism=PLAIN&source=$external
      craig_wilson?source=testdb
      mike_obrien?mechanism=MONGODB-CR&source=testdb
      

      Using the mysql shell it would look something like this:

      mysql --protocol tcp --port 3307 -u "jeff_yemin?mechanism=PLAIN&source=\$external" --ssl --ssl-ca ~/certs/mdbca.crt -p
      

      Attachments

        Activity

          People

            andrew.aldridge@mongodb.com Andrew Aldridge
            emily.hall Emily Hall
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:
              7 years, 13 weeks ago