Uploaded image for project: 'MongoDB Shell'
  1. MongoDB Shell
  2. MONGOSH-573

Spike: Investigate win-ca to access system certificate store on Windows

XMLWordPrintableJSON

    • Type: Icon: Task Task
    • Resolution: Fixed
    • Priority: Icon: Major - P3 Major - P3
    • 0.10.0
    • Affects Version/s: None
    • Component/s: None
    • None
    • Needed
    • Hide

      Two differences to the legacy shell’s behavior:

      • This is currently only implemented on Windows. Support for macOS is part of MONGOSH-574 and may or may not end up being implemented.
      • Users need to mark their private key as exportable at the time of importing the private key/certificate. This was not a requirement in the legacy shell. (For context, the option in the Windows Certificate Import Wizard looks something like this: https://i.stack.imgur.com/e4ofN.jpg – it’s not checked by default.)
      Show
      Two differences to the legacy shell’s behavior: This is currently only implemented on Windows. Support for macOS is part of MONGOSH-574 and may or may not end up being implemented. Users need to mark their private key as exportable at the time of importing the private key/certificate. This was not a requirement in the legacy shell. (For context, the option in the Windows Certificate Import Wizard looks something like this: https://i.stack.imgur.com/e4ofN.jpg – it’s not checked by default.)

      Validate if we can use https://github.com/ukoloff/win-ca to access the system certificate store in Windows. This would be an option to support the --tlsCertificateSelector argument.

            Assignee:
            anna.henningsen@mongodb.com Anna Henningsen
            Reporter:
            michael.rose@mongodb.com Michael Rose (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

              Created:
              Updated:
              Resolved: