Details
-
Task
-
Resolution: Fixed
-
Major - P3
-
None
-
None
-
None
-
Fully Compatible
-
Security 2021-05-03
Description
If a client connects to a database and attempts to authenticate as multiple users, by performing multiple authentication exchanges on multiple databases, we should:
- Emit a log warning indicating that this behaviour is deprecated
- Reject the second authentication attempt if they provided an API version and specified {apiStrict: true} for their connection. We should not enforce this limitation if testCommands are enabled, to prevent it from impacting our integration testing infrastructure.
Attachments
Issue Links
- is documented by
-
DOCS-14395 Investigate changes in SERVER-56267: Prevent authentication as multiple users on API versioned connections
-
- Closed
-