[SERVER-41069] Ability to disable authorization via x509 extensions - MongoDB

XML

Word

Printable

Details

Type: New Feature
Status: Closed
Priority: Major - P3
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 3.4.22, 3.6.14, 4.0.11, 4.2.0-rc3, 4.3.1
Component/s: Security
Labels:
None

Backwards Compatibility:
Fully Compatible
Backport Requested:

v4.2, v4.0, v3.6, v3.4
Sprint:
Security 2019-06-17

Description

The MONGODB-X509 auth mechanism has support for specifying user authorizations via a x509 extension in the client certificate.

When managing a database where I want to control the user authorizations, but I want the user to be able to issue their own client certificates, it is desirable to be able to disable this feature.

Attachments

Issue Links

is documented by

DOCS-12796 Docs for SERVER-41069: Ability to disable authorization via x509 extensions

Closed

Activity

People

Assignee:: Jonathan Reams

Reporter:: Cory Mintz

Participants:: Cory Mintz, Githook User, Jonathan Reams, Sara Williamson

Votes:: 0 Vote for this issue

Watchers:: 6 Start watching this issue

Dates

Created:: May 09 2019 01:37:06 PM UTC

Updated:: Nov 06 2019 03:37:42 PM UTC

Resolved:: Jun 11 2019 06:17:19 PM UTC