Uploaded image for project: 'Core Server'
  1. Core Server
  2. SERVER-45309

Ensure bind credentials live longer than LDAP operations

    • Type: Icon: Bug Bug
    • Resolution: Fixed
    • Priority: Icon: Major - P3 Major - P3
    • 4.2.3, 4.3.3, 4.0.15
    • Affects Version/s: None
    • Component/s: Security
    • Labels:
      None
    • Fully Compatible
    • ALL
    • v4.2, v4.0
    • Security 2019-01-13, Security 2019-01-27

      LDAP bind credentials will be used during bind. They may additionally be used during queries, while chasing referrals. As such, these credentials objects must live longer than the complete operation, in both the pooled and non-pooled codepaths.

      When credentials are dynamically updated, via setParameter, they should be eventually propagated across all connections after the current operation completes.

            Assignee:
            sara.golemon@mongodb.com Sara Golemon
            Reporter:
            spencer.jackson@mongodb.com Spencer Jackson
            Votes:
            0 Vote for this issue
            Watchers:
            10 Start watching this issue

              Created:
              Updated:
              Resolved: