Loading...

XML

Word

Printable

JSON

Type: Improvement
Resolution: Done
Priority: Major - P3
Fix Version/s: None
Affects Version/s: None
Component/s: Security
Labels:
None

Case:
Confidence Status:
None
Work Order:
3
CAR Domain/s:
None

Aha! Reference:
None
Tracking Level:
None
Risk Status:
None
Exec Notes:
None
Goal Name(s):
None
Goal Link:
None

Currently, if a user is defined externally (say as a Kerberos principal), and the mongo cluster has no knowledge of the user, it is possible to log in as that user, but all actions will be auth denied. It might be preferable for the authentication to fail with Unauthorized or AuthenticationFailed, instead.

is related to

SERVER-12303 Group, Role-based Authentication/Authorization via LDAP, Active Directory

Closed

Assignee:: DO NOT USE - Backlog - Platform Team
Reporter:: Andy Schwerin
Participants:: Andy Schwerin, DO NOT USE - Backlog - Platform Team, Rahul Dhodapkar
Votes:: 0 Vote for this issue
Watchers:: 5 Start watching this issue

Created:: Jul 23 2013 09:48:53 PM UTC
Updated:: Feb 01 2018 08:35:52 PM UTC
Resolved:: Nov 30 2015 04:14:32 PM UTC

Details

Description

Attachments

Issue Links

Forms

Activity

People

Dates