[SERVER-72977] Change DBClient auth and logout functions to use DatabaseName object Created: 18/Jan/23  Updated: 06/Apr/23  Resolved: 17/Feb/23

Status: Closed
Project: Core Server
Component/s: None
Affects Version/s: None
Fix Version/s: None

Type: Task Priority: Major - P3
Reporter: Sophia Tan Assignee: Sophia Tan
Resolution: Won't Do Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Issue Links:
Issue split
split from SERVER-70433 Change DBClient functions to use Data... Closed
Related
related to SERVER-74165 Remove TODOs on SERVER-72977 Closed
Participants:
Story Points: 2

 Comments   
Comment by Githook User [ 06/Apr/23 ]

Author:

{'name': 'Sophia Tan', 'email': 'sophia_tll@hotmail.com', 'username': 'sophiatll'}

Message: SERVER-74165 Remove TODOs on SERVER-72977
Branch: master
https://github.com/mongodb/mongo/commit/b3625f23c82e5c9b3ea9c878eded8fb1be3406f6

Comment by Sophia Tan [ 17/Feb/23 ]

In serverless mutitenancy environment, for tenant user, the cloud side is responsible for authorizing access to a particular database and the mongods do not do this. It means the tenant user auth does not depend on "DBclient::auth" at all. It's authorized with signed security token on unauthorized connection. Also, the serverless client shell does not use the DBClient code at all. The "DBClient::auth" is only used for super system user which has no tenant id.
So, we need not to change the DBClient "auth()" function to pass DatabaseName object. "logout" function is similar to this.

Generated at Thu Feb 08 06:23:18 UTC 2024 using Jira 9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66.