[SERVER-48693] Add network counter for cluster authentication Created: 10/Jun/20 Updated: 29/Oct/23 Resolved: 24/Aug/20 |
|
| Status: | Closed |
| Project: | Core Server |
| Component/s: | None |
| Affects Version/s: | None |
| Fix Version/s: | 4.7.0 |
| Type: | Improvement | Priority: | Major - P3 |
| Reporter: | Sara Golemon | Assignee: | Adam Cooper (Inactive) |
| Resolution: | Fixed | Votes: | 0 |
| Labels: | neweng | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original Estimate: | Not Specified | ||
| Issue Links: |
|
||||||||
| Backwards Compatibility: | Fully Compatible | ||||||||
| Sprint: | Security 2020-07-27, Security 2020-08-10, Security 2020-08-24, Security 2020-09-07 | ||||||||
| Participants: | |||||||||
| Linked BF Score: | 43 | ||||||||
| Description |
|
We currently provide counters in server status for the number of attempted and successful authentications per mechanism. We should provide an additional counter which indicates the number of authentication attempts for intra-cluster auth. For X.509 this means an RDN satisfying the isClusterMember() definition. For user/password mechanisms such as SCRAM, this means authentications using the admin.__system user. The counts in "clusterAuthenticate" will represent a subset of the total number of authentications counted by "authenticate". We will NOT exclude them from the "authenticate" count. Reference https://github.com/mongodb/mongo/commit/7250f407321e70bcb76bb1e21a7679670d29919d which added the existing counters for where to make these changes.
|
| Comments |
| Comment by Githook User [ 20/Aug/20 ] |
|
Author: {'name': 'Adam Cooper', 'email': 'adam.cooper@mongodb.com', 'username': 'super-cooper'}Message: |
| Comment by Githook User [ 19/Aug/20 ] |
|
Author: {'name': 'Gregory Wlodarek', 'email': 'gregory.wlodarek@mongodb.com', 'username': 'GWlodarek'}Message: Revert " This reverts commit cad2d5b3ebfe416024d0276c410302e98f2b5037. |
| Comment by Githook User [ 18/Aug/20 ] |
|
Author: {'name': 'Adam Cooper', 'email': 'adam.cooper@mongodb.com', 'username': 'super-cooper'}Message: |
| Comment by Githook User [ 17/Aug/20 ] |
|
Author: {'name': 'Gregory Wlodarek', 'email': 'gregory.wlodarek@mongodb.com', 'username': 'GWlodarek'}Message: Revert " This reverts commit 24dd72daae9e4cf59ad51910058bc111f20edbff. |
| Comment by Githook User [ 14/Aug/20 ] |
|
Author: {'name': 'Adam Cooper', 'email': 'adam.cooper@mongodb.com', 'username': 'super-cooper'}Message: |