[SERVER-52862] Move logAuthentication hooks to AuthenticationSession Created: 13/Nov/20 Updated: 29/Oct/23 Resolved: 18/Feb/21 |
|
| Status: | Closed |
| Project: | Core Server |
| Component/s: | Internal Code |
| Affects Version/s: | None |
| Fix Version/s: | 5.0.0 |
| Type: | Improvement | Priority: | Major - P3 |
| Reporter: | Spencer Jackson | Assignee: | Benjamin Caimano (Inactive) |
| Resolution: | Fixed | Votes: | 0 |
| Labels: | None | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original Estimate: | Not Specified | ||
| Issue Links: |
|
||||||||||||||||||||||||||||
| Backwards Compatibility: | Fully Compatible | ||||||||||||||||||||||||||||
| Sprint: | Security 2021-01-25, Security 2021-02-08, Security 2021-02-22 | ||||||||||||||||||||||||||||
| Participants: | |||||||||||||||||||||||||||||
| Description |
|
The AuthenticationSession is a RAII object which lives for the duration of an authentication attempt. Events that need to happen over the course of an Authentication should be migrated to its lifecycle methods, so that maintainers of saslStart and saslContinue don't need to think about them as much. The session will need methods to inform it when attempts succeed, fail(with a code), or learn the authentication names of clients. We should move calls to audit::logAuthentication and auth counter increments to the object. |
| Comments |
| Comment by Githook User [ 17/Feb/21 ] |
|
Author: {'name': 'Ben Caimano', 'email': 'ben.caimano@10gen.com'}Message: |
| Comment by Githook User [ 17/Feb/21 ] |
|
Author: {'name': 'Ben Caimano', 'email': 'ben.caimano@10gen.com'}Message: |