Loading...

XML

Word

Printable

JSON

Type: Improvement
Resolution: Fixed
Priority: Major - P3
Fix Version/s: 4.0.9, 4.1.9
Affects Version/s: None
Component/s: None
Labels:
None

Backwards Compatibility:
Fully Compatible
Backport Requested:

v4.0
Sprint:
Security 2019-02-25, Security 2019-03-11, Security 2019-03-25
Case:
Confidence Status:
None
Work Order:
3
CAR Domain/s:
None

Aha! Reference:
None
Tracking Level:
None
Risk Status:
None
Exec Notes:
None
Goal Name(s):
None
Goal Link:
None

MongoURI::connect() still assumes SCRAM-SHA-1 for URIs which don't have an authentication mechanism explicitly specified.

Check isMaster.saslSupportedMechs before making assumptions.

duplicates

SERVER-39404 SASL negotiation in shell 4.0.5 fails to authenticate SCRAM-SHA-256 user

Closed

is depended on by

SERVER-39404 SASL negotiation in shell 4.0.5 fails to authenticate SCRAM-SHA-256 user

Closed

Assignee:: Shreyas Kalyan
Reporter:: Sara Golemon (Inactive)
Participants:: Githook User, Sara Golemon, Shreyas Kalyan, Spencer Brown
Votes:: 0 Vote for this issue
Watchers:: 5 Start watching this issue

Created:: Jan 24 2019 07:15:47 PM UTC
Updated:: Oct 29 2023 10:24:49 PM UTC
Resolved:: Mar 11 2019 08:01:36 PM UTC
Confidence Status Last Update:: 19/Feb/19 6:47 PM