Uploaded image for project: 'Drivers'
  1. Drivers
  2. DRIVERS-333

Drivers MUST NOT require a username for MONGODB-X509 when connected to MongoDB >= 3.4

    XMLWordPrintableJSON

Details

    • Icon: Improvement Improvement
    • Resolution: Done
    • Icon: Major - P3 Major - P3
    • None
    • None
    • None
    • $i18n.getText("admin.common.words.hide")
      Key Status/Resolution FixVersion
      JAVA-2375 Done 3.4.0
      SCALA-279 Done
      NODE-849 Done 2.2.12
      CSHARP-1822 Done 2.4
      RUBY-1171 Done 2.4.0
      PERL-679 Done 2.0.0
      PYTHON-1184 Done 3.4
      CXX-1123 Won't Fix
      CXX-1124 Done 3.1.0
      $i18n.getText("admin.common.words.show")
      #scriptField, #scriptField *{ border: 1px solid black; } #scriptField{ border-collapse: collapse; } #scriptField td { text-align: center; /* Center-align text in table cells */ } #scriptField td.key { text-align: left; /* Left-align text in the Key column */ } #scriptField a { text-decoration: none; /* Remove underlines from links */ border: none; /* Remove border from links */ } /* Add green background color to cells with FixVersion */ #scriptField td.hasFixVersion { background-color: #00FF00; /* Green color code */ } /* Center-align the first row headers */ #scriptField th { text-align: center; } Key Status/Resolution FixVersion JAVA-2375 Done 3.4.0 SCALA-279 Done NODE-849 Done 2.2.12 CSHARP-1822 Done 2.4 RUBY-1171 Done 2.4.0 PERL-679 Done 2.0.0 PYTHON-1184 Done 3.4 CXX-1123 Won't Fix CXX-1124 Done 3.1.0

    Description

      MongoDB 3.4 will automatically extract the username from the provided certificate, so the authenticate command no longer requires it.

      See the recent update to the spec:
      https://github.com/mongodb/specifications/commit/964a8aa571040208bd5e5443241b3bb628fb535f

      Validation requirements:

      • When connected to MongoDB 3.4:
        • You MUST NOT raise an error when the application only provides an X.509 certificate and no username.
        • If the application does not provide a username you MUST NOT send a username to the server.
        • If the application provides a username you MUST send that username to the server.
      • When connected to MongoDB 3.2 or earlier:
        • You MUST send a username to the server.
        • If no username is provided by the application, you MAY extract the username from the X.509 certificate instead of requiring the application to provide it.
        • If you choose not to automatically extract the username from the certificate you MUST error when no username is provided by the application.

      Attachments

        Activity

          People

            rathi.gnanasekaran Rathi Gnanasekaran
            bjori Hannes Magnusson
            Votes:
            0 Vote for this issue
            Watchers:
            7 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: