Uploaded image for project: 'Drivers'
  1. Drivers
  2. DRIVERS-278

Cross Realm authentication using Kerberos

XMLWordPrintableJSON

    • Type: Icon: New Feature New Feature
    • Resolution: Done
    • Priority: Icon: Major - P3 Major - P3
    • None
    • Component/s: None
    • Labels:
      None
    • $i18n.getText("admin.common.words.hide")
      Key Status/Resolution FixVersion
      RUBY-1103 Done mongo-kerberos-2.1.0, 2.4.0, 12_01_17
      PYTHON-750 Done 3.3
      CDRIVER-1174 Done 1.4.0
      PERL-752 Won't Fix
      $i18n.getText("admin.common.words.show")
      #scriptField, #scriptField *{ border: 1px solid black; } #scriptField{ border-collapse: collapse; } #scriptField td { text-align: center; /* Center-align text in table cells */ } #scriptField td.key { text-align: left; /* Left-align text in the Key column */ } #scriptField a { text-decoration: none; /* Remove underlines from links */ border: none; /* Remove border from links */ } /* Add green background color to cells with FixVersion */ #scriptField td.hasFixVersion { background-color: #00FF00; /* Green color code */ } /* Center-align the first row headers */ #scriptField th { text-align: center; } Key Status/Resolution FixVersion RUBY-1103 Done mongo-kerberos-2.1.0, 2.4.0, 12_01_17 PYTHON-750 Done 3.3 CDRIVER-1174 Done 1.4.0 PERL-752 Won't Fix

      Drivers should be able to provide a authentication realm when authenticating using Kerberos. Java example below.

      MongoCredential gssAPICred = MongoCredential
.createGSSAPICredential(KERBEROS + "@WINDOWSREALM.COM")
.withMechanismProperty("REALM", "LINUXREALM.COM")
.withMechanismProperty("CANONICALIZE_HOST_NAME", true);

      NOTE: this Java example is how this could be exposed in the Java driver. It doesn't actually work this way now. The Java driver does not support a "REALM" mechanism property.

      This is to allow for cross realm authentication.

            Assignee:
            craig.wilson@mongodb.com Craig Wilson
            Reporter:
            christkv Christian Amor Kvalheim
            Votes:
            0 Vote for this issue
            Watchers:
            8 Start watching this issue

              Created:
              Updated:
              Resolved: