Loading...

XML

Word

Printable

JSON

Type: Task
Resolution: Fixed
Priority: Major - P3
Fix Version/s: 6.13.1
Affects Version/s: None
Component/s: Authentication
Labels:
- external-PR
- quick-win

Quarter:
- FY25Q4
Story Points:
2
Compass/DevTools Changes:
Not Needed
Confidence Status:
None

Checklist:

show more show less

Documentation Changes:
Not Needed

Aha! Reference:
None
Tracking Level:
None
Risk Status:
None
Exec Notes:
None
Goal Name:
None
Goal Link:
None

kggau has created PR #4258: fix: use conversationId returned by the server instead of hardcoded integer in SASL implementation for MONGODB-AWS. in node-mongodb-native

### Description
`MONGODB-AWS` authentication mechanism should follow SASL [spec](https://github.com/mongodb/specifications/blob/master/source/auth/auth.md#sasl-mechanisms). Current implementation ignores the `conversationId` sent by the server and uses a hardcoded integer for all `saslContinue` messages across all conversations.

#### What is changing?
Changing the hardcoded integer for `conversationId` to utilize the one that gets returned in the `saslStart` response.

##### Is there new documentation needed for these changes?
No. This change brings the implementation to spec.

#### What is the motivation for this change?

This is a bug. MONGODB-AWS authentication failed on database emulating MongoDB.

### Release Highlight

Fixes SASL implementation for MONGODB-AWS to use conversationId returned by the server instead of hardcoded integer.

Assignee:: Warren James

Reporter:: Tom Selander

Reviewers:: Warren James

Votes:: 0 Vote for this issue

Watchers:: 7 Start watching this issue

Created:: Sep 30 2024 11:46:58 PM UTC

Updated:: Feb 07 2025 06:57:32 AM UTC

Resolved:: Feb 07 2025 06:57:32 AM UTC

Confidence Status Last Update:: 16/Jan/25 3:38 PM

GA Target Date:: None

Public Preview Target Date:: None

Private Preview Target Date:: None

Experiment Target Date:: None

Details

Description

Attachments

Activity

People

Dates