[DRIVERS-69] Support greedy authentication Created: 16/Jan/13 Updated: 15/Apr/19 Resolved: 14/Oct/15 |
|
| Status: | Closed |
| Project: | Drivers |
| Component/s: | None |
| Fix Version/s: | None |
| Type: | New Feature | Priority: | Critical - P2 |
| Reporter: | Jeffrey Yemin | Assignee: | Barrie Segal |
| Resolution: | Done | Votes: | 0 |
| Labels: | 2.4 | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original Estimate: | Not Specified | ||
| Issue Links: |
|
||||||||||||||||||||||||||||||||
| Epic Link: | Authentication | ||||||||||||||||||||||||||||||||
| Driver Compliance: |
|
||||||||||||||||||||||||||||||||
| Description |
|
All drivers need to support greedy authentication, which means that all connections in the connection pool must be authenticated against all databases for which credentials have been provided. This is due to delegated authorization in the 2.4 server, where a user can be defined in database 'A' and granted privileges on database 'B'. All drivers must disallow authenticating to the same database multiple times with different credentials using the same MongoClient instance. All drivers need to support the authSource option on the connection string. |
| Comments |
| Comment by Andrew Morrow (Inactive) [ 03/Mar/15 ] |
|
Validating for C++11 because validated for C |