[DOCS-14395] Investigate changes in SERVER-56267: Prevent authentication as multiple users on API versioned connections Created: 30/Apr/21  Updated: 13/Nov/23  Due: 04/Jun/21  Resolved: 03/Jun/21

Status: Closed
Project: Documentation
Component/s: manual, Server
Affects Version/s: None
Fix Version/s: 5.0.0-rc0, Server_Docs_20231030, Server_Docs_20231106, Server_Docs_20231105, Server_Docs_20231113

Type: Task Priority: Major - P3
Reporter: Backlog - Core Eng Program Management Team Assignee: Joseph Dougherty
Resolution: Fixed Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Issue Links:
Documented
documents SERVER-56267 Prevent authentication as multiple us... Closed
Participants:
Days since reply: 2 years, 35 weeks ago
Epic Link: DOCSP-14217
Story Points: 3

 Description   

Description

Downstream Change Summary

When { api:

Unknown macro: { strict}

} is specified, three classes of multi authentication will be rejected:

  • Re-authenticating as the same user on the same database.
  • Authenticating as new user on a previously authenticated database.
  • Authenticating as any user on a new database when previous authenticated on a different database.

All three of these cases emit log entries at warning severity with our without { api:

Unknown macro: { strict}

}. These entries have log ids 5626700, 5626701, and 5626702.

Description of Linked Ticket

If a client connects to a database and attempts to authenticate as multiple users, by performing multiple authentication exchanges on multiple databases, we should:

  • Emit a log warning indicating that this behaviour is deprecated
  • Reject the second authentication attempt if they provided an API version and specified {apiStrict: true} for their connection. We should not enforce this limitation if testCommands are enabled, to prevent it from impacting our integration testing infrastructure.

Scope of changes

Impact to Other Docs

MVP (Work and Date)

Resources (Scope or Design Docs, Invision, etc.)



 Comments   
Comment by Githook User [ 09/Jun/21 ]

Author:

{'name': 'andf-mongodb', 'email': '55111344+andf-mongodb@users.noreply.github.com', 'username': 'andf-mongodb'}

Message: DOCS-14395 fix minor indentation typo
Branch: master
https://github.com/mongodb/docs/commit/2c66c9d00ad23c4d572e4faebe3224a5b3813440

Comment by Githook User [ 03/Jun/21 ]

Author:

{'name': 'Joseph Dougherty', 'email': 'joseph.dougherty@mongodb.com', 'username': 'jmd-mongo'}

Message: DOCS-14395 users may not authenticate as multiple users when --apiStrict
Branch: master
https://github.com/mongodb/docs/commit/b69d2e3ee5e8fbd0b4c834eae3766f25898d718a

Generated at Thu Feb 08 08:10:17 UTC 2024 using Jira 9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66.