[SERVER-82681] Make auth use unsigned security token instead of $tenant Created: 01/Nov/23  Updated: 29/Jan/24

Status: Blocked
Project: Core Server
Component/s: None
Affects Version/s: None
Fix Version/s: None

Type: Task Priority: Major - P3
Reporter: Sophia Tan Assignee: Joseph Prince
Resolution: Unresolved Votes: 0
Labels: ntdi_code_quality, ntdi_must_have, ntdi_test_plan
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Issue Links:
Issue split
split from SERVER-82271 Stop testing requests with $tenant Needs Scheduling
Assigned Teams:
Service Arch
Sprint: Service Arch 2023-11-27, Service Arch 2023-12-11, Service Arch 2023-12-25, Service Arch 2024-02-19
Participants:
Story Points: 3

 Description   

We need to make auth c++ code and jstests use unsigned security token instead of `$tenant`.
There are several jstests of auth are using `$tenant`. 
multitenancy_test_authzn.js
security_token.js
token_privileges.js
authz_tenant_access_control.js



 Comments   
Comment by Sara Golemon [ 22/Nov/23 ]

So, we can start to work on this ticket without changing any auth C++ code. Is my understanding correct?

We can, but we shouldn't. I've actually asked joseph.prince@mongodb.comto remove the `$tenant` field handling in C++ at the same time because otherwise we'll find ourselves in a position where we have a feature (accepting $tenant in command body) which is wholly untested. IMO the tests for a feature should not vanish until the feature itself is gone.

Generated at Thu Feb 08 06:49:58 UTC 2024 using Jira 9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66.