[COMPASS-5905] Remove password field from Kerberos Created: 20/Jun/22  Updated: 29/Oct/23  Resolved: 13/Jul/22

Status: Closed
Project: Compass
Component/s: Connectivity
Affects Version/s: None
Fix Version/s: 1.32.4

Type: Task Priority: Major - P3
Reporter: Maurizio Casimirri Assignee: Anna Henningsen
Resolution: Fixed Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Issue Links:
Related
is related to COMPASS-5950 Turn Kerberos password field display ... Closed
Story Points: 1
Documentation Changes: Not Needed
Sprint: Iteration Eel, Iteration Fish

 Description   

Remove password field from Kerberos by default and hide behind the feature flag: process.env.COMPASS_ENABLE_KERBEROS_PASSWORD_FIELD

For context, this field should be only rarely necessary as a last resort in environments where the Kerberos auth is not working as intended. But causes issues with a working setup: customers reported that users try to fill the field and potentially expose their system password through connection string and screencasts.



 Comments   
Comment by Githook User [ 30/Aug/22 ]

Author:

{'name': 'Anna Henningsen', 'email': 'anna.henningsen@mongodb.com', 'username': 'addaleax'}

Message: chore(connection-form): hide kerberos password field COMPASS-5905 (#3253)
Branch: compass-settings
https://github.com/mongodb-js/compass/commit/11781f578d090a336f4007e24fdf0e9c8cc72729

Comment by Githook User [ 18/Jul/22 ]

Author:

{'name': 'Anna Henningsen', 'email': 'anna.henningsen@mongodb.com', 'username': 'addaleax'}

Message: chore(connection-form): hide kerberos password field COMPASS-5905 (#3253)
Branch: 1.32-releases
https://github.com/mongodb-js/compass/commit/11781f578d090a336f4007e24fdf0e9c8cc72729

Comment by Githook User [ 14/Jul/22 ]

Author:

{'name': 'Anna Henningsen', 'email': 'anna.henningsen@mongodb.com', 'username': 'addaleax'}

Message: chore(connection-form): hide kerberos password field COMPASS-5905 (#3253)
Branch: update-schema-validation-warnings-to-leafygreen
https://github.com/mongodb-js/compass/commit/11781f578d090a336f4007e24fdf0e9c8cc72729

Comment by Githook User [ 14/Jul/22 ]

Author:

{'name': 'Anna Henningsen', 'email': 'anna.henningsen@mongodb.com', 'username': 'addaleax'}

Message: chore(connection-form): hide kerberos password field COMPASS-5905 (#3253)
Branch: compass-sidebar-merge
https://github.com/mongodb-js/compass/commit/11781f578d090a336f4007e24fdf0e9c8cc72729

Comment by Githook User [ 13/Jul/22 ]

Author:

{'name': 'Anna Henningsen', 'email': 'anna.henningsen@mongodb.com', 'username': 'addaleax'}

Message: chore(connection-form): hide kerberos password field COMPASS-5905 (#3253)
Branch: COMPASS-5673-query-bar
https://github.com/mongodb-js/compass/commit/11781f578d090a336f4007e24fdf0e9c8cc72729

Comment by Githook User [ 13/Jul/22 ]

Author:

{'name': 'Anna Henningsen', 'email': 'anna.henningsen@mongodb.com', 'username': 'addaleax'}

Message: chore(connection-form): hide kerberos password field COMPASS-5905 (#3253)
Branch: COMPASS-5672-update-crud-toolbar-to-lg
https://github.com/mongodb-js/compass/commit/11781f578d090a336f4007e24fdf0e9c8cc72729

Comment by Githook User [ 13/Jul/22 ]

Author:

{'name': 'Anna Henningsen', 'email': 'anna.henningsen@mongodb.com', 'username': 'addaleax'}

Message: chore(connection-form): hide kerberos password field COMPASS-5905 (#3253)
Branch: COMPASS-5677-update-query-history-toolbar
https://github.com/mongodb-js/compass/commit/11781f578d090a336f4007e24fdf0e9c8cc72729

Comment by Githook User [ 13/Jul/22 ]

Author:

{'name': 'Anna Henningsen', 'email': 'anna.henningsen@mongodb.com', 'username': 'addaleax'}

Message: chore(connection-form): hide kerberos password field COMPASS-5905 (#3253)
Branch: COMPASS-5946-leafy-green-select-and-combobox
https://github.com/mongodb-js/compass/commit/11781f578d090a336f4007e24fdf0e9c8cc72729

Comment by Githook User [ 13/Jul/22 ]

Author:

{'name': 'Anna Henningsen', 'email': 'anna.henningsen@mongodb.com', 'username': 'addaleax'}

Message: chore(connection-form): hide kerberos password field COMPASS-5905 (#3253)
Branch: main
https://github.com/mongodb-js/compass/commit/11781f578d090a336f4007e24fdf0e9c8cc72729

Comment by Githook User [ 13/Jul/22 ]

Author:

{'name': 'Anna Henningsen', 'email': 'anna@addaleax.net', 'username': 'addaleax'}

Message: chore(connection-form): hide kerberos password field COMPASS-5905

See the ticket for motivation.
Branch: 5905-dev
https://github.com/mongodb-js/compass/commit/90b067ef814aa2e42c9ef830cf1e239640ffa4c4

Comment by Githook User [ 13/Jul/22 ]

Author:

{'name': 'Anna Henningsen', 'email': 'anna@addaleax.net', 'username': 'addaleax'}

Message: chore(connection-form): hide kerberos password field COMPASS-5905

See the ticket for motivation.
Branch: 5905-dev
https://github.com/mongodb-js/compass/commit/fff74ed3f974d1399c8efff9a46361184b54a8e1

Comment by Githook User [ 13/Jul/22 ]

Author:

{'name': 'Anna Henningsen', 'email': 'anna@addaleax.net', 'username': 'addaleax'}

Message: chore(connection-form): hide kerberos password field COMPASS-5905

See the ticket for motivation.
Branch: 5905-dev
https://github.com/mongodb-js/compass/commit/90a2a976860f60ec4a4b2ef1886be820ac7f584d

Generated at Wed Feb 07 22:41:11 UTC 2024 using Jira 9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66.