[JAVA-871] Support the MONGODB-X509 authentication mechanism Created: 11/Jul/13  Updated: 27/May/22  Resolved: 03/Oct/13

Status: Closed
Project: Java Driver
Component/s: Authentication
Affects Version/s: None
Fix Version/s: 2.12.0, 3.0.0

Type: New Feature Priority: Major - P3
Reporter: Jeffrey Yemin Assignee: Jeffrey Yemin
Resolution: Done Votes: 0
Labels: None
Σ Remaining Estimate: Not Specified Remaining Estimate: Not Specified
Σ Time Spent: Not Specified Time Spent: Not Specified
Σ Original Estimate: Not Specified Original Estimate: Not Specified

Issue Links:
Depends
depends on SERVER-10322 The mongo shell should require a user... Closed
depends on SERVER-7961 Use x.509 certificates for authentica... Closed
Sub-Tasks:
Key
Summary
Type
Status
Assignee
JAVA-975 3.0: Support the MONGODB-X509 authent... Sub-task Closed Jeffrey Yemin  
JAVA-976 2.12: Support the MONGODB-X509 authen... Sub-task Closed Jeffrey Yemin  
Server Compat: 2.5

 Description   

This ticket is to support authentication using the distinguished subject name of the X.509 Certificate presented during SSL negotiation as the username.

Essentially, this is yet another protocol in addition to MONGODB-CR and SASL that will need to be implemented.

The command document for this mechanism is:

{authenticate: 1, mechanism: 'MONGODB-X509', user: <username>}

...where <username> is the distinguished subject name of the X.509 client certificate in RFC 2253 format. It can be determined using openssl:

openssl x509 -in </path/to/client.pem> -inform PEM -subject -nameopt RFC2253



 Comments   
Comment by auto [ 30/Sep/13 ]

Author:

{u'username': u'jyemin', u'name': u'Jeff Yemin', u'email': u'jeff.yemin@10gen.com'}

Message: JAVA-871, JAVA-976: Support for MONGODB-X509 authentication mechanism
Branch: master
https://github.com/mongodb/mongo-java-driver/commit/64addf20f28bc718f36672a835befd82c8d7d5f0

Comment by auto [ 12/Aug/13 ]

Author:

{u'username': u'jyemin', u'name': u'Jeff Yemin', u'email': u'jeff.yemin@10gen.com'}

Message: JAVA-871: Support for MONGODB-X509 authentication mechanism.
Branch: 3.0.x
https://github.com/mongodb/mongo-java-driver/commit/f65cd0416a0cf76840109893428b6f1421c7f63c

Generated at Thu Feb 08 08:53:16 UTC 2024 using Jira 9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66.