Loading...

XML

Word

Printable

JSON

Type: Improvement
Resolution: Fixed
Priority: Major - P3
Fix Version/s: 4.0.9, 4.1.9
Affects Version/s: None
Component/s: None
Labels:
None

Backwards Compatibility:
Fully Compatible
Backport Requested:

v4.0
Sprint:
Security 2019-02-25, Security 2019-03-11, Security 2019-03-25
Case:

MongoURI::connect() still assumes SCRAM-SHA-1 for URIs which don't have an authentication mechanism explicitly specified.

Check isMaster.saslSupportedMechs before making assumptions.

duplicates

SERVER-39404 SASL negotiation in shell 4.0.5 fails to authenticate SCRAM-SHA-256 user

Closed

is depended on by

SERVER-39404 SASL negotiation in shell 4.0.5 fails to authenticate SCRAM-SHA-256 user

Closed

Assignee:: Shreyas Kalyan

Reporter:: Sara Golemon

Participants:: Githook User, Sara Golemon, Shreyas Kalyan, Spencer Brown

Votes:: 0 Vote for this issue

Watchers:: 5 Start watching this issue

Created:: Jan 24 2019 07:15:47 PM UTC

Updated:: Oct 29 2023 10:24:49 PM UTC

Resolved:: Mar 11 2019 08:01:36 PM UTC