Loading...

XML

Word

Printable

JSON

Type: Bug
Resolution: Fixed
Priority: Major - P3
Fix Version/s: 4.3.2
Affects Version/s: None
Component/s: Security
Labels:
None

Case:
Confidence Status:
None

Aha! Reference:
None
Tracking Level:
None
Risk Status:
None
Exec Notes:
None
Goal Link:
None
Goal Name(s):
None

Speculative authentication always uses "admin" as the source.

In certain circumstances this can lead to a Attempt to switch database target during SASL authentication error when using a non admin auth source and duplicated usernames.

duplicates

JAVA-4286 When we have two users with the same name, but created for different databases, and one of them is Admin db, conflicts of authentication happen, to be precise the user from other db can't login in system using own password.

Closed

Assignee:: Ross Lawley
Reporter:: Ross Lawley
Reviewers:: None
Votes:: 1 Vote for this issue
Watchers:: 2 Start watching this issue

Created:: Sep 06 2021 02:25:31 PM UTC
Updated:: Oct 28 2023 11:21:04 AM UTC
Resolved:: Sep 07 2021 12:15:07 PM UTC
Confidence Status Last Update:: 06/Sep/21 2:27 PM

Details

Description

Attachments

Issue Links

Activity

People

Dates