Loading...

XML

Word

Printable

JSON

Type: Improvement
Resolution: Duplicate
Priority: Major - P3
Fix Version/s: None
Affects Version/s: 5.2.0
Component/s: None
Labels:
- tech-debt

Assigned Teams:

Server Security
Confidence Status:
None
Work Order:
3
CAR Domain/s:
None

Aha! Reference:
None
Tracking Level:
None
Risk Status:
None
Exec Notes:
None
Goal Name(s):
None
Goal Link:
None

In ~~SERVER-61038~~ the patchwork was introduced with a goal of dropping __system connections when they become invalid. The code is suboptimal as far as read-ability because it introduces another edge case, where none should exist. We decided to merge that patch as-is, but refactor the authorization code before 6.0 to make it straightforward

has to be done after

SERVER-61038 Invalidate __system sessions after runtime changes to clusterIpSourceAllowlist

Closed

Assignee:: [DO NOT USE] Backlog - Security Team
Reporter:: Sergey Galtsev (Inactive)
Participants:: [DO NOT USE] Backlog - Security Team, Sergey Galtsev
Votes:: 0 Vote for this issue
Watchers:: 4 Start watching this issue

Created:: Nov 16 2021 05:34:00 PM UTC
Updated:: Dec 06 2022 12:47:18 AM UTC
Resolved:: Jan 25 2022 10:03:09 PM UTC

Details

Description

Attachments

Issue Links

Activity

People

Dates