Uploaded image for project: 'Core Server'
  1. Core Server
  2. SERVER-32965

Expose per-user SASL mechanism negotiation via isMaster

XMLWordPrintableJSON

    • Type: Icon: Improvement Improvement
    • Resolution: Fixed
    • Priority: Icon: Major - P3 Major - P3
    • 3.7.2
    • Affects Version/s: None
    • Component/s: Security
    • None
    • Fully Compatible
    • Platforms 2018-02-12

      Allow clients to inform servers during isMaster which user they will eventually authenticate as. This permits the server to express which SASL authentication mechanisms may be used to authenticate as that user. The username send in the command request must be unprocessed and unnormalized.

      Example:

      MongoDB Enterprise > db.runCommand({isMaster: 1, saslSupportedMechs: "sajack.admin"})
{
        "ismaster" : true,
        "saslSupportedMechs": ["SCRAM-SHA-1", "SCRAM-SHA-256"],
        ...
        "ok" : 1
}

            Assignee:
            spencer.jackson@mongodb.com Spencer Jackson
            Reporter:
            spencer.jackson@mongodb.com Spencer Jackson
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

              Created:
              Updated:
              Resolved: