Uploaded image for project: 'Drivers'
  1. Drivers
  2. DRIVERS-278

Cross Realm authentication using Kerberos

    XMLWordPrintableJSON

Details

    • New Feature
    • Status: Closed
    • Major - P3
    • Resolution: Fixed
    • None
    • None
    • None

    Description

      Drivers should be able to provide a authentication realm when authenticating using Kerberos. Java example below.

      MongoCredential gssAPICred = MongoCredential
      		 
      .createGSSAPICredential(KERBEROS + "@WINDOWSREALM.COM")
      		 
      .withMechanismProperty("REALM", "LINUXREALM.COM")
      		 
      .withMechanismProperty("CANONICALIZE_HOST_NAME", true);

      NOTE: this Java example is how this could be exposed in the Java driver. It doesn't actually work this way now. The Java driver does not support a "REALM" mechanism property.

      This is to allow for cross realm authentication.

      Attachments

        Issue Links

          depends on

          Improvement - An improvement or enhancement to an existing feature or task. CDRIVER-1174 Bring Connection URI usage up to spec (v1.2)

          • Major - P3 - Major loss of function.
          • Closed

          Improvement - An improvement or enhancement to an existing feature or task. PYTHON-750 Kerberos SSPI support for Windows

          • Major - P3 - Major loss of function.
          • Closed

          Improvement - An improvement or enhancement to an existing feature or task. RUBY-1103 Support realm option when using Kerberos authentication

          • Major - P3 - Major loss of function.
          • Closed

          Activity

            People

              craig.wilson@mongodb.com Craig Wilson
              christkv Christian Amor Kvalheim
              Votes:
              0 Vote for this issue
              Watchers:
              8 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: