<!-- 
RSS generated by JIRA (9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66) at Wed Feb 07 22:36:44 UTC 2024

It is possible to restrict the fields that are returned in this document by specifying the 'field' parameter in your request.
For example, to request only the issue key and summary append 'field=key&field=summary' to the URL of your request.
-->
<rss version="0.92" >
<channel>
    <title>MongoDB Jira</title>
    <link>https://jira.mongodb.org</link>
    <description>This file is an XML representation of an issue</description>
    <language>en-us</language>    <build-info>
        <version>9.7.1</version>
        <build-number>970001</build-number>
        <build-date>13-04-2023</build-date>
    </build-info>


<item>
            <title>[COMPASS-4544] MongoDB Atlas Cluster Database - can&apos;t login with X509 user with Compass</title>
                <link>https://jira.mongodb.org/browse/COMPASS-4544</link>
                <project id="13182" key="COMPASS">Compass </project>
                    <description>&lt;h3&gt;&lt;a name=&quot;ProblemDescription&quot;&gt;&lt;/a&gt;Problem Description&lt;/h3&gt;

&lt;p&gt;On version 1.22.1 it was still possible to connect with x509 (user) authentication to cluster db.&lt;br/&gt;
However, after upgrade to 1.24.1, it stopped to work.&lt;/p&gt;
&lt;h3&gt;&lt;a name=&quot;StepstoReproduce&quot;&gt;&lt;/a&gt;Steps to Reproduce&lt;/h3&gt;
&lt;ol&gt;
	&lt;li&gt;Fill in connection fields individually&lt;/li&gt;
	&lt;li&gt;fill cluster dns name in Hostname field&lt;/li&gt;
	&lt;li&gt;SRV Record enabled&lt;/li&gt;
	&lt;li&gt;Authentication - X509, username: username as created in Atlas DB&lt;/li&gt;
	&lt;li&gt;Fill replica set name&lt;/li&gt;
	&lt;li&gt;Read Preference: Primary&lt;/li&gt;
	&lt;li&gt;SSL: Server and Client Validation
	&lt;ol&gt;
		&lt;li&gt;Certificate Authority: PEM File from Mongo created for X509 User&lt;/li&gt;
		&lt;li&gt;Client Certificate:&#160;PEM File from Mongo created for X509 User&lt;/li&gt;
		&lt;li&gt;Client Private Key:&#160;PEM File from Mongo created for X509 User&lt;/li&gt;
	&lt;/ol&gt;
	&lt;/li&gt;
	&lt;li&gt;Click CONNECT&lt;/li&gt;
&lt;/ol&gt;


&lt;h3&gt;&lt;a name=&quot;ExpectedResults&quot;&gt;&lt;/a&gt;Expected Results&lt;/h3&gt;

&lt;p&gt;Connects&lt;/p&gt;
&lt;h3&gt;&lt;a name=&quot;ActualResults&quot;&gt;&lt;/a&gt;Actual Results&lt;/h3&gt;

&lt;p&gt;&quot;Auth failed&quot; error&lt;/p&gt;
&lt;h3&gt;&lt;a name=&quot;AdditionalNotes&quot;&gt;&lt;/a&gt;Additional Notes&lt;/h3&gt;

&lt;p&gt;Works perfectly on 1.22.1 Compass version, and on mongo cli.&lt;/p&gt;</description>
                <environment></environment>
        <key id="1571189">COMPASS-4544</key>
            <summary>MongoDB Atlas Cluster Database - can&apos;t login with X509 user with Compass</summary>
                <type id="1" iconUrl="https://jira.mongodb.org/secure/viewavatar?size=xsmall&amp;avatarId=14703&amp;avatarType=issuetype">Bug</type>
                                            <priority id="3" iconUrl="https://jira.mongodb.org/images/icons/priorities/major.svg">Major - P3</priority>
                        <status id="6" iconUrl="https://jira.mongodb.org/images/icons/statuses/closed.png" description="The issue is considered finished, the resolution is correct. Issues which are closed can be reopened.">Closed</status>
                    <statusCategory id="3" key="done" colorName="success"/>
                                    <resolution id="13202">Works as Designed</resolution>
                                        <assignee username="-1">Unassigned</assignee>
                                    <reporter username="amikamg@securitydam.com">Amikam Goldfarb</reporter>
                        <labels>
                    </labels>
                <created>Thu, 17 Dec 2020 13:12:46 +0000</created>
                <updated>Fri, 27 Oct 2023 13:07:39 +0000</updated>
                            <resolved>Fri, 18 Dec 2020 12:25:09 +0000</resolved>
                                    <version>1.24.1</version>
                                    <fixVersion>No version</fixVersion>
                                    <component>Compass</component>
                        <due></due>
                            <votes>0</votes>
                                    <watches>1</watches>
                                                                                                                <comments>
                            <comment id="3535918" author="rhys.howell" created="Fri, 18 Dec 2020 12:25:10 +0000"  >&lt;p&gt;&lt;a href=&quot;https://jira.mongodb.org/secure/ViewProfile.jspa?name=amikamg%40securitydam.com&quot; class=&quot;user-hover&quot; rel=&quot;amikamg@securitydam.com&quot;&gt;amikamg@securitydam.com&lt;/a&gt; In Compass 1.24.1 we updated our mongodb driver to 3.6.3 we had a fix where it started to use the username field supplied in the X509 username field: &lt;a href=&quot;https://github.com/mongodb/node-mongodb-native/commit/9110a45cfa9a536795fd3cbca92d1c1b4dc61d59&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/mongodb/node-mongodb-native/commit/9110a45cfa9a536795fd3cbca92d1c1b4dc61d59&lt;/a&gt; . Previously it seems this was unused, and it was resolved through the certificate. I suspect this is causing the issue. Sorry that updating caused it to stop working.&lt;/p&gt;

&lt;p&gt;Two potential solutions:&lt;/p&gt;
&lt;ul class=&quot;alternate&quot; type=&quot;square&quot;&gt;
	&lt;li&gt;Remove the username value, we&apos;ve now made it optional, and with the PEM from compass it is not needed as it is pulled from the CN field in the PEM.&lt;/li&gt;
	&lt;li&gt;Update the username field to include `CN=` before the username so that it uses the username per &lt;span class=&quot;error&quot;&gt;&amp;#91;RFC-2253&amp;#93;&lt;/span&gt;(&lt;a href=&quot;https://tools.ietf.org/html/rfc2253&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://tools.ietf.org/html/rfc2253&lt;/a&gt;). For example, the username &quot;X509User&quot; should be provided as &quot;CN=X509User&quot;.&lt;/li&gt;
&lt;/ul&gt;


&lt;p&gt;Thanks for creating this ticket - and sorry the connection suddenly stopped working - hopefully one of those solutions fixes it for you. Feel free to re-open if that&apos;s not the case.&lt;/p&gt;</comment>
                    </comments>
                    <attachments>
                    </attachments>
                <subtasks>
                    </subtasks>
                <customfields>
                                                <customfield id="customfield_10050" key="com.atlassian.jira.toolkit:comments">
                        <customfieldname># Replies</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>1.0</customfieldvalue>
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                            <customfield id="customfield_10055" key="com.atlassian.jira.ext.charting:firstresponsedate">
                        <customfieldname>Date of 1st Reply</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>Fri, 18 Dec 2020 12:25:10 +0000</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_10052" key="com.atlassian.jira.toolkit:dayslastcommented">
                        <customfieldname>Days since reply</customfieldname>
                        <customfieldvalues>
                                        3 years, 7 weeks, 5 days ago
    
                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_18254" key="com.onresolve.jira.groovy.groovyrunner:scripted-field">
                        <customfieldname>Dependencies</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue><![CDATA[]]></customfieldvalue>


                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_15850" key="com.atlassian.jira.plugins.jira-development-integration-plugin:devsummary">
                        <customfieldname>Development</customfieldname>
                        <customfieldvalues>
                            
                        </customfieldvalues>
                    </customfield>
                                                                                            <customfield id="customfield_10257" key="com.atlassian.jira.plugin.system.customfieldtypes:radiobuttons">
                        <customfieldname>Documentation Changes</customfieldname>
                        <customfieldvalues>
                                <customfieldvalue key="11861"><![CDATA[Not Needed]]></customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                            <customfield id="customfield_10057" key="com.atlassian.jira.toolkit:lastusercommented">
                        <customfieldname>Last comment by Customer</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>true</customfieldvalue>
                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_10056" key="com.atlassian.jira.toolkit:lastupdaterorcommenter">
                        <customfieldname>Last commenter</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>luke.bonanomi@mongodb.com</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_11151" key="com.atlassian.jira.toolkit:LastCommentDate">
                        <customfieldname>Last public comment date</customfieldname>
                        <customfieldvalues>
                            3 years, 7 weeks, 5 days ago
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                        <customfield id="customfield_10051" key="com.atlassian.jira.toolkit:participants">
                        <customfieldname>Participants</customfieldname>
                        <customfieldvalues>
                                        <customfieldvalue>amikamg@securitydam.com</customfieldvalue>
            <customfieldvalue>rhys.howell@mongodb.com</customfieldvalue>
    
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                        <customfield id="customfield_14254" key="com.pyxis.greenhopper.jira:gh-lexo-rank">
                        <customfieldname>Product Rank</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>1|hymayf:</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                <customfield id="customfield_12550" key="com.pyxis.greenhopper.jira:gh-lexo-rank">
                        <customfieldname>Rank</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>2|hy84qf:</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_10558" key="com.pyxis.greenhopper.jira:gh-global-rank">
                        <customfieldname>Rank (Obsolete)</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>9223372036854775807</customfieldvalue>
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                                                                        <customfield id="customfield_10053" key="com.atlassian.jira.ext.charting:timeinstatus">
                        <customfieldname>Time In Status</customfieldname>
                        <customfieldvalues>
                            
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                            <customfield id="customfield_14350" key="com.pyxis.greenhopper.jira:gh-lexo-rank">
                        <customfieldname>serverRank</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>1|hylx7r:</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                    </customfields>
    </item>
</channel>
</rss>