Uploaded image for project: 'Core Server'
  1. Core Server
  2. SERVER-23983

PLAIN authentication is truncating the user

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Closed
    • Major - P3
    • Resolution: Works as Designed
    • None
    • None
    • Security
    • None
    • ALL
    • Security 15 (06/03/16), Security 16 (06/24/16)

    Description

      The plain authentication mechanism is truncating the username if the string contains the character "@".

      It seems to be caused by the UserName class used during the Sasl PLAIN conversation.

      This is avoiding the user to authenticate using the mail field in LDAP directories.

      Attachments

        Issue Links

          is related to

          Bug - A problem which impairs or prevents the functions of the product. SERVER-20365 "authentication failed, storedKey mismatch" on synthetic users and databases with '@'

          • Major - P3 - Major loss of function.
          • Closed

          Activity

            People

              spencer.jackson@mongodb.com Spencer Jackson
              ricardo.lorenzo Ricardo Lorenzo
              Votes:
              0 Vote for this issue
              Watchers:
              7 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: