Loading...

XML

Word

Printable

JSON

Type: New Feature
Resolution: Done
Priority: Major - P3
Fix Version/s: 2.12.0, 3.0.0
Affects Version/s: None
Component/s: Authentication
Labels:
None

Case:
Confidence Status:
None

Aha! Reference:
None
Tracking Level:
None
Risk Status:
None
Exec Notes:
None
Goal Link:
None
Goal Name(s):
None

Section 4.1 of http://www.ietf.org/rfc/rfc2743.txt says:

The "hostname" may ... be canonicalized by attempting a DNS lookup and using the fully-qualified domain name which is returned...

Oracle's GSSAPI implementation is not canonicalizing (note that it's optional). Given that, the driver should be able to do the canonicalization on behalf of the application, as authentication can fail if the application provides the driver with a DNS alias to a mongos server.

In scope of this ticket, we need to determine whether the canonicalization should always be done, or whether it should be opt-in.

Assignee:: Jeffrey Yemin
Reporter:: Jeffrey Yemin
Reviewers:: None
Votes:: 0 Vote for this issue
Watchers:: 2 Start watching this issue

Created:: Jan 14 2014 03:25:43 AM UTC
Updated:: Jan 03 2018 04:05:37 AM UTC
Resolved:: Jan 24 2014 04:06:04 PM UTC
Confidence Status Last Update:: 14/Jan/14 11:28 PM

Details

Description

Attachments

Forms

Activity

People

Dates