[DRIVERS-2672] OIDC: Implement Machine Callback Mechanism Created: 13/Jul/23  Updated: 07/Feb/24

Status: Implementing
Project: Drivers
Component/s: Authentication
Fix Version/s: None

Type: Task Priority: Unknown
Reporter: Steve Silvester Assignee: Matt Dale
Resolution: Unresolved Votes: 0
Labels: init-140-workload-ga
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Issue Links:
Depends
is depended on by DRIVERS-2601 OIDC: Automatic token acquisition for... Blocked
is depended on by DRIVERS-2416 OIDC: Automatic token acquisition for... In Progress
Issue split
split to RUBY-3303 OIDC: Implement Machine Callback Mech... Needs Triage
split to CDRIVER-4689 OIDC: Implement Machine Callback Mech... Backlog
split to CXX-2720 OIDC: Implement Machine Callback Mech... Backlog
split to GODRIVER-2911 OIDC: Implement Machine Callback Mech... Backlog
split to RUST-1708 OIDC: Implement Machine Callback Mech... Backlog
split to PHPLIB-1201 OIDC: Implement Machine Callback Mech... Blocked
split to NODE-5464 OIDC: Implement Machine Callback Mech... In Progress
split to MOTOR-1161 OIDC: Implement Machine Callback Mech... Closed
split to PYTHON-3845 OIDC: Implement Machine Callback Mech... Closed
split to CSHARP-4725 OIDC: Implement Machine Callback Mech... Scheduled
split to JAVA-5077 OIDC: Implement Machine Callback Mech... In Progress
Related
related to DRIVERS-2821 Optimizations OIDC in FaaS environments Backlog
related to DRIVERS-2551 Add Cross Platform Testing for OIDC SASL Closed
Epic Link: Implement OIDC SASL mechanism
Driver Changes: Needed
Server Compat: 7.0
Quarter: FY23Q4, FY24Q1, FY24Q2, FY24Q3, FY24Q4
Downstream Changes Summary:

Summary of necessary driver changes

  • Implement the MONGODB-OIDC auth mechanism.
    • Some drivers need to implement the "Human Auth Flow" to support applications with direct human interaction (e.g. mongosh, Compass, etc).

Commits for syncing spec/prose tests
(and/or refer to an existing language POC if needed)

  • Sync spec tests at a288630
  • See the Python driver for a reference implementation here.
Engineering Lead: James Kovacs James Kovacs
Program Manager: Jessica Sigafoos Jessica Sigafoos
Start date:
Driver Compliance:
Key Status/Resolution FixVersion
CDRIVER-4689 Backlog
CXX-2720 Backlog
CSHARP-4725 Scheduled
GODRIVER-2911 Backlog
JAVA-5077 In Progress
NODE-5464 In Progress
MOTOR-1161 Duplicate
PYTHON-3845 Duplicate
PHPLIB-1201 Blocked
RUBY-3303 Needs Triage
RUST-1708 Backlog

 Description   

Summary

As part of CLOUDP-178758, we will need to provide callbacks for machine interaction (Milestone A.3). This is a separate API from the one originally implemented in DRIVERS-2415, which was for human interaction (Milestone A.1).

Motivation

Who is the affected end user?

Who are the stakeholders?

How does this affect the end user?

Are they blocked? Are they annoyed? Are they confused?

How likely is it that this problem or use case will occur?

Main path? Edge case?

If the problem does occur, what are the consequences and how severe are they?

Minor annoyance at a log message? Performance concern? Outage/unavailability? Failover can't complete?

Is this issue urgent?

Does this ticket have a required timeline? What is it?

Is this ticket required by a downstream team?

Needed by e.g. Atlas, Shell, Compass?

Is this ticket only for tests?

Does this ticket have any functional impact, or is it just test improvements?

Acceptance Criteria

What specific requirements must be met to consider the design phase complete?



 Comments   
Comment by Steve Silvester [ 02/Feb/24 ]

This work includes and supersedes DRIVERS-2415

Comment by Githook User [ 31/Jan/24 ]

Author:

{'name': 'Matt Dale', 'email': '9760375+matthewdale@users.noreply.github.com', 'username': 'matthewdale'}

Message: DRIVERS-2672 Add OIDC machine workflow spec. (#1471)

---------

Co-authored-by: Steven Silvester <steven.silvester@ieee.org>
Co-authored-by: Anna Henningsen <github@addaleax.net>
Co-authored-by: Durran Jordan <durran@gmail.com>
Co-authored-by: Jeff Yemin <jeff.yemin@mongodb.com>
Branch: master
https://github.com/mongodb/specifications/commit/a2886304afb006cc39808cd67a3503cc1b221116

Comment by Githook User [ 22/Jan/24 ]

Author:

{'name': 'Steven Silvester', 'email': 'steven.silvester@ieee.org', 'username': 'blink1073'}

Message: DRIVERS-2672 Clean up local OIDC testing instructions (#386)
Branch: dependabot/pip/dot-evergreen/ocsp/flask-2.2.5
https://github.com/mongodb-labs/drivers-evergreen-tools/commit/311ecc3d4b53b9a9d3861ddc3b35cf05bcf823ac

Comment by Githook User [ 10/Jan/24 ]

Author:

{'name': 'Steven Silvester', 'email': 'steven.silvester@ieee.org', 'username': 'blink1073'}

Message: DRIVERS-2672 Clean up local OIDC testing instructions (#386)
Branch: master
https://github.com/mongodb-labs/drivers-evergreen-tools/commit/311ecc3d4b53b9a9d3861ddc3b35cf05bcf823ac

Generated at Thu Feb 08 08:26:09 UTC 2024 using Jira 9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66.