Details
-
Improvement
-
Resolution: Done
-
Major - P3
-
None
-
None
-
None
-
(copied to CRM)
Description
Currently, if a user is defined externally (say as a Kerberos principal), and the mongo cluster has no knowledge of the user, it is possible to log in as that user, but all actions will be auth denied. It might be preferable for the authentication to fail with Unauthorized or AuthenticationFailed, instead.
Attachments
Issue Links
- is related to
-
SERVER-12303 Group, Role-based Authentication/Authorization via LDAP, Active Directory
-
- Closed
-