<!-- 
RSS generated by JIRA (9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66) at Thu Feb 08 08:25:31 UTC 2024

It is possible to restrict the fields that are returned in this document by specifying the 'field' parameter in your request.
For example, to request only the issue key and summary append 'field=key&field=summary' to the URL of your request.
-->
<rss version="0.92" >
<channel>
    <title>MongoDB Jira</title>
    <link>https://jira.mongodb.org</link>
    <description>This file is an XML representation of an issue</description>
    <language>en-us</language>    <build-info>
        <version>9.7.1</version>
        <build-number>970001</build-number>
        <build-date>13-04-2023</build-date>
    </build-info>


<item>
            <title>[DRIVERS-2415] Implement OIDC SASL mechanism</title>
                <link>https://jira.mongodb.org/browse/DRIVERS-2415</link>
                <project id="10980" key="DRIVERS">Drivers</project>
                    <description>&lt;div class=&quot;panel&quot; style=&quot;background-color: #fafbfc;border-width: 1px;&quot;&gt;&lt;div class=&quot;panelContent&quot; style=&quot;background-color: #fafbfc;&quot;&gt;
&lt;h3&gt;&lt;a name=&quot;Summary&quot;&gt;&lt;/a&gt;&lt;b&gt;Summary&lt;/b&gt;&lt;/h3&gt;

&lt;p&gt;&lt;em&gt;New SASL mechanism targeting&lt;/em&gt; &lt;em&gt;MongoDB 7.0.&#160; See&lt;/em&gt; &lt;a href=&quot;https://openid.net/specs/openid-connect-core-1_0.html&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://openid.net/specs/openid-connect-core-1_0.html&lt;/a&gt;.&lt;/p&gt;
&lt;h3&gt;&lt;a name=&quot;Motivation.Thisoriginalticketandspecworkwastargetinghumanworkflows%28MilestoneA.1%29%2CandprioritizeddeliveryintheNodedriver%2CforconsumptionbyCompass.&quot;&gt;&lt;/a&gt;&lt;b&gt;Motivation&lt;/b&gt;.  This original ticket and spec work was targeting human workflows (Milestone A.1), and prioritized delivery in the Node driver, for consumption by Compass.&lt;/h3&gt;

&lt;p&gt;&lt;em&gt;Several customers have asked if they can use single-sign on to login into Atlas clusters. Currently, the only mechanism available is AWS-IAM which they can then tie to their own identity provider. However, this mechanism is AWS-specific. Customers are looking for 1) their Atlas users to also login into the database without creating database specific credentials 2) provide native support for Azure and GCP IAM for the database. This project is a stepping stone towards achieving these goals.&lt;/em&gt;&lt;/p&gt;
&lt;h3&gt;&lt;a name=&quot;CastofCharacters&quot;&gt;&lt;/a&gt;&lt;b&gt;Cast of Characters&lt;/b&gt;&lt;/h3&gt;

&lt;p&gt;Engineering Lead: James Kovacs&lt;br/&gt;
Document Author: Steven Silvester&lt;br/&gt;
POCers: Steven Silvester, Dmitry Lukyanov&lt;br/&gt;
Product Owner: Shubam Ranjan&lt;br/&gt;
Program Manager: Esha Bhargava&lt;br/&gt;
Stakeholders:&#160; Anna Henningsen&lt;/p&gt;
&lt;h3&gt;&lt;a name=&quot;Channels%26Docs&quot;&gt;&lt;/a&gt;&lt;b&gt;Channels &amp;amp; Docs&lt;/b&gt;&lt;/h3&gt;
&lt;h4&gt;&lt;a name=&quot;SlackChannelhttps%3A%2F%2Fmongodb.slack.com%2Farchives%2FC02JPH1124D&quot;&gt;&lt;/a&gt;&lt;a href=&quot;https://mongodb.slack.com/archives/C02JPH1124D&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;Slack Channel&lt;/a&gt;&lt;/h4&gt;
&lt;h4&gt;&lt;a name=&quot;ScopeDocumenthttps%3A%2F%2Fjira.mongodb.org%2Fbrowse%2FWRITING12538&quot;&gt;&lt;/a&gt;&lt;a href=&quot;https://jira.mongodb.org/browse/WRITING-12538&quot; class=&quot;external-link&quot; rel=&quot;nofollow&quot;&gt;Scope Document&lt;/a&gt;&lt;/h4&gt;
&lt;h4&gt;&lt;a name=&quot;TechnicalDesignDocumenthttps%3A%2F%2Fjira.mongodb.org%2Fbrowse%2FWRITING12539&quot;&gt;&lt;/a&gt;&lt;a href=&quot;https://jira.mongodb.org/browse/WRITING-12539&quot; class=&quot;external-link&quot; rel=&quot;nofollow&quot;&gt;Technical Design Document&lt;/a&gt;&lt;/h4&gt;
&lt;/div&gt;&lt;/div&gt;</description>
                <environment></environment>
        <key id="2116020">DRIVERS-2415</key>
            <summary>Implement OIDC SASL mechanism</summary>
                <type id="11" iconUrl="https://jira.mongodb.org/secure/viewavatar?size=xsmall&amp;avatarId=14707&amp;avatarType=issuetype">Epic</type>
                                            <priority id="10300" iconUrl="https://jira.mongodb.org/images/icons/priorities/medium.svg">Unknown</priority>
                        <status id="13453" iconUrl="https://jira.mongodb.org/images/icons/status_generic.gif" description="">Implementing</status>
                    <statusCategory id="4" key="indeterminate" colorName="inprogress"/>
                                    <resolution id="-1">Unresolved</resolution>
                                        <assignee username="matt.dale@mongodb.com">Matt Dale</assignee>
                                    <reporter username="esha.bhargava@mongodb.com">Esha Bhargava</reporter>
                        <labels>
                            <label>MDBW23</label>
                            <label>phase-A.1</label>
                    </labels>
                <created>Wed, 17 Aug 2022 14:30:29 +0000</created>
                <updated>Tue, 23 Jan 2024 21:34:32 +0000</updated>
                                                                                    <votes>2</votes>
                                    <watches>11</watches>
                                                                                                                <comments>
                            <comment id="5468967" author="xgen-internal-githook" created="Thu, 1 Jun 2023 21:28:08 +0000"  >&lt;p&gt;Author: &lt;/p&gt;
{&apos;name&apos;: &apos;Steven Silvester&apos;, &apos;email&apos;: &apos;steven.silvester@ieee.org&apos;, &apos;username&apos;: &apos;blink1073&apos;}
&lt;p&gt;Message: &lt;a href=&quot;https://jira.mongodb.org/browse/DRIVERS-2415&quot; title=&quot;Implement OIDC SASL mechanism&quot; class=&quot;issue-link&quot; data-issue-key=&quot;DRIVERS-2415&quot;&gt;DRIVERS-2415&lt;/a&gt; More tokens and add requestScopes (#312)&lt;br/&gt;
Branch: master&lt;br/&gt;
&lt;a href=&quot;https://github.com/mongodb-labs/drivers-evergreen-tools/commit/f4eb73a23a972e3e4e3ff902aa549db9cf9b2883&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/mongodb-labs/drivers-evergreen-tools/commit/f4eb73a23a972e3e4e3ff902aa549db9cf9b2883&lt;/a&gt;&lt;/p&gt;</comment>
                            <comment id="5392466" author="xgen-internal-githook" created="Mon, 1 May 2023 22:38:18 +0000"  >&lt;p&gt;Author: &lt;/p&gt;
{&apos;name&apos;: &apos;Steven Silvester&apos;, &apos;email&apos;: &apos;steven.silvester@ieee.org&apos;, &apos;username&apos;: &apos;blink1073&apos;}
&lt;p&gt;Message: &lt;a href=&quot;https://jira.mongodb.org/browse/DRIVERS-2415&quot; title=&quot;Implement OIDC SASL mechanism&quot; class=&quot;issue-link&quot; data-issue-key=&quot;DRIVERS-2415&quot;&gt;DRIVERS-2415&lt;/a&gt; Feature flag is no longer needed (#300)&lt;br/&gt;
Branch: master&lt;br/&gt;
&lt;a href=&quot;https://github.com/mongodb-labs/drivers-evergreen-tools/commit/48e2dbaa57dec8f5733a222010ded476652e0e18&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/mongodb-labs/drivers-evergreen-tools/commit/48e2dbaa57dec8f5733a222010ded476652e0e18&lt;/a&gt;&lt;/p&gt;</comment>
                            <comment id="5387320" author="xgen-internal-githook" created="Sat, 29 Apr 2023 03:21:08 +0000"  >&lt;p&gt;Author: &lt;/p&gt;
{&apos;name&apos;: &apos;Steven Silvester&apos;, &apos;email&apos;: &apos;steven.silvester@ieee.org&apos;, &apos;username&apos;: &apos;blink1073&apos;}
&lt;p&gt;Message: &lt;a href=&quot;https://jira.mongodb.org/browse/DRIVERS-2415&quot; title=&quot;Implement OIDC SASL mechanism&quot; class=&quot;issue-link&quot; data-issue-key=&quot;DRIVERS-2415&quot;&gt;DRIVERS-2415&lt;/a&gt; OIDC SASL Clarifications (#1381)&lt;/p&gt;

&lt;p&gt;Co-authored-by: Durran Jordan &amp;lt;durran@gmail.com&amp;gt;&lt;br/&gt;
Co-authored-by: Bailey Pearson &amp;lt;bailey.pearson@gmail.com&amp;gt;&lt;br/&gt;
Co-authored-by: Maxim Katcharov &amp;lt;maxim.katcharov@mongodb.com&amp;gt;&lt;br/&gt;
Co-authored-by: Anna Henningsen &amp;lt;github@addaleax.net&amp;gt;&lt;br/&gt;
Branch: master&lt;br/&gt;
&lt;a href=&quot;https://github.com/mongodb/specifications/commit/5112bcca7789bb274c91dc425078508751fee142&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/mongodb/specifications/commit/5112bcca7789bb274c91dc425078508751fee142&lt;/a&gt;&lt;/p&gt;</comment>
                            <comment id="5337636" author="xgen-internal-githook" created="Tue, 11 Apr 2023 11:27:13 +0000"  >&lt;p&gt;Author: &lt;/p&gt;
{&apos;name&apos;: &apos;Steven Silvester&apos;, &apos;email&apos;: &apos;steven.silvester@ieee.org&apos;, &apos;username&apos;: &apos;blink1073&apos;}
&lt;p&gt;Message: &lt;a href=&quot;https://jira.mongodb.org/browse/DRIVERS-2415&quot; title=&quot;Implement OIDC SASL mechanism&quot; class=&quot;issue-link&quot; data-issue-key=&quot;DRIVERS-2415&quot;&gt;DRIVERS-2415&lt;/a&gt; Update for JWKSURI removal (#291)&lt;br/&gt;
Branch: master&lt;br/&gt;
&lt;a href=&quot;https://github.com/mongodb-labs/drivers-evergreen-tools/commit/585d946928c4175374f7f98f05d0625a3c836547&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/mongodb-labs/drivers-evergreen-tools/commit/585d946928c4175374f7f98f05d0625a3c836547&lt;/a&gt;&lt;/p&gt;</comment>
                            <comment id="5315750" author="xgen-internal-githook" created="Fri, 31 Mar 2023 15:37:45 +0000"  >&lt;p&gt;Author: &lt;/p&gt;
{&apos;name&apos;: &apos;Steven Silvester&apos;, &apos;email&apos;: &apos;steven.silvester@ieee.org&apos;, &apos;username&apos;: &apos;blink1073&apos;}
&lt;p&gt;Message: &lt;a href=&quot;https://jira.mongodb.org/browse/DRIVERS-2415&quot; title=&quot;Implement OIDC SASL mechanism&quot; class=&quot;issue-link&quot; data-issue-key=&quot;DRIVERS-2415&quot;&gt;DRIVERS-2415&lt;/a&gt; Update for new server config (#284)&lt;br/&gt;
Branch: master&lt;br/&gt;
&lt;a href=&quot;https://github.com/mongodb-labs/drivers-evergreen-tools/commit/48910a6f5266727e67e027881276e251b4121f0a&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/mongodb-labs/drivers-evergreen-tools/commit/48910a6f5266727e67e027881276e251b4121f0a&lt;/a&gt;&lt;/p&gt;</comment>
                            <comment id="5290352" author="xgen-internal-githook" created="Tue, 21 Mar 2023 22:35:16 +0000"  >&lt;p&gt;Author: &lt;/p&gt;
{&apos;name&apos;: &apos;Steven Silvester&apos;, &apos;email&apos;: &apos;steven.silvester@ieee.org&apos;, &apos;username&apos;: &apos;blink1073&apos;}
&lt;p&gt;Message: &lt;a href=&quot;https://jira.mongodb.org/browse/DRIVERS-2415&quot; title=&quot;Implement OIDC SASL mechanism&quot; class=&quot;issue-link&quot; data-issue-key=&quot;DRIVERS-2415&quot;&gt;DRIVERS-2415&lt;/a&gt; Ensure 27017 is the Primary in the OIDC Replica Set (#278)&lt;br/&gt;
Branch: master&lt;br/&gt;
&lt;a href=&quot;https://github.com/mongodb-labs/drivers-evergreen-tools/commit/cc59ac4578093abf17a8662c6c4f4848678fc8ea&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/mongodb-labs/drivers-evergreen-tools/commit/cc59ac4578093abf17a8662c6c4f4848678fc8ea&lt;/a&gt;&lt;/p&gt;</comment>
                            <comment id="5278041" author="xgen-internal-githook" created="Thu, 16 Mar 2023 15:56:52 +0000"  >&lt;p&gt;Author: &lt;/p&gt;
{&apos;name&apos;: &apos;Steven Silvester&apos;, &apos;email&apos;: &apos;steven.silvester@ieee.org&apos;, &apos;username&apos;: &apos;blink1073&apos;}
&lt;p&gt;Message: &lt;a href=&quot;https://jira.mongodb.org/browse/DRIVERS-2415&quot; title=&quot;Implement OIDC SASL mechanism&quot; class=&quot;issue-link&quot; data-issue-key=&quot;DRIVERS-2415&quot;&gt;DRIVERS-2415&lt;/a&gt; Better wait for replicaset (#277)&lt;br/&gt;
Branch: master&lt;br/&gt;
&lt;a href=&quot;https://github.com/mongodb-labs/drivers-evergreen-tools/commit/6f416ce54bac16d812303b0bcf6f3cbd80dc38ef&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/mongodb-labs/drivers-evergreen-tools/commit/6f416ce54bac16d812303b0bcf6f3cbd80dc38ef&lt;/a&gt;&lt;/p&gt;</comment>
                            <comment id="5272851" author="xgen-internal-githook" created="Tue, 14 Mar 2023 23:00:06 +0000"  >&lt;p&gt;Author: &lt;/p&gt;
{&apos;name&apos;: &apos;Steven Silvester&apos;, &apos;email&apos;: &apos;steven.silvester@ieee.org&apos;, &apos;username&apos;: &apos;blink1073&apos;}
&lt;p&gt;Message: &lt;a href=&quot;https://jira.mongodb.org/browse/DRIVERS-2415&quot; title=&quot;Implement OIDC SASL mechanism&quot; class=&quot;issue-link&quot; data-issue-key=&quot;DRIVERS-2415&quot;&gt;DRIVERS-2415&lt;/a&gt; Wait for replicaset primary to be available (#275)&lt;br/&gt;
Branch: master&lt;br/&gt;
&lt;a href=&quot;https://github.com/mongodb-labs/drivers-evergreen-tools/commit/1c40f3a8d6a9deece77a2058528927400913bcfb&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/mongodb-labs/drivers-evergreen-tools/commit/1c40f3a8d6a9deece77a2058528927400913bcfb&lt;/a&gt;&lt;/p&gt;</comment>
                            <comment id="5246564" author="xgen-internal-githook" created="Fri, 3 Mar 2023 12:49:36 +0000"  >&lt;p&gt;Author: &lt;/p&gt;
{&apos;name&apos;: &apos;Durran Jordan&apos;, &apos;email&apos;: &apos;durran@gmail.com&apos;, &apos;username&apos;: &apos;durran&apos;}
&lt;p&gt;Message: fix(&lt;a href=&quot;https://jira.mongodb.org/browse/DRIVERS-2415&quot; title=&quot;Implement OIDC SASL mechanism&quot; class=&quot;issue-link&quot; data-issue-key=&quot;DRIVERS-2415&quot;&gt;DRIVERS-2415&lt;/a&gt;): change device terminology to service provider (#1383)&lt;br/&gt;
Branch: master&lt;br/&gt;
&lt;a href=&quot;https://github.com/mongodb/specifications/commit/ed45dc95ca174a5832d653adec5a842184b7a82f&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/mongodb/specifications/commit/ed45dc95ca174a5832d653adec5a842184b7a82f&lt;/a&gt;&lt;/p&gt;</comment>
                            <comment id="5243375" author="xgen-internal-githook" created="Thu, 2 Mar 2023 12:41:41 +0000"  >&lt;p&gt;Author: &lt;/p&gt;
{&apos;name&apos;: &apos;Durran Jordan&apos;, &apos;email&apos;: &apos;durran@gmail.com&apos;, &apos;username&apos;: &apos;durran&apos;}
&lt;p&gt;Message: fix(&lt;a href=&quot;https://jira.mongodb.org/browse/DRIVERS-2415&quot; title=&quot;Implement OIDC SASL mechanism&quot; class=&quot;issue-link&quot; data-issue-key=&quot;DRIVERS-2415&quot;&gt;DRIVERS-2415&lt;/a&gt;): change device terminology to service&lt;br/&gt;
Branch: &lt;a href=&quot;https://jira.mongodb.org/browse/DRIVERS-2415&quot; title=&quot;Implement OIDC SASL mechanism&quot; class=&quot;issue-link&quot; data-issue-key=&quot;DRIVERS-2415&quot;&gt;DRIVERS-2415&lt;/a&gt;-services&lt;br/&gt;
&lt;a href=&quot;https://github.com/mongodb/specifications/commit/b2d0eed9826931d940aef95ef2ab01facfd7faf4&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/mongodb/specifications/commit/b2d0eed9826931d940aef95ef2ab01facfd7faf4&lt;/a&gt;&lt;/p&gt;</comment>
                            <comment id="5232799" author="xgen-internal-githook" created="Mon, 27 Feb 2023 14:18:08 +0000"  >&lt;p&gt;Author: &lt;/p&gt;
{&apos;name&apos;: &apos;Durran Jordan&apos;, &apos;email&apos;: &apos;durran@gmail.com&apos;, &apos;username&apos;: &apos;durran&apos;}
&lt;p&gt;Message: fix(&lt;a href=&quot;https://jira.mongodb.org/browse/DRIVERS-2415&quot; title=&quot;Implement OIDC SASL mechanism&quot; class=&quot;issue-link&quot; data-issue-key=&quot;DRIVERS-2415&quot;&gt;DRIVERS-2415&lt;/a&gt;): bring back token endpoint (#272)&lt;br/&gt;
Branch: master&lt;br/&gt;
&lt;a href=&quot;https://github.com/mongodb-labs/drivers-evergreen-tools/commit/b2b5d33f5b1dca994a393d10038523559fca63d2&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/mongodb-labs/drivers-evergreen-tools/commit/b2b5d33f5b1dca994a393d10038523559fca63d2&lt;/a&gt;&lt;/p&gt;</comment>
                            <comment id="5232636" author="xgen-internal-githook" created="Mon, 27 Feb 2023 13:08:17 +0000"  >&lt;p&gt;Author: &lt;/p&gt;
{&apos;name&apos;: &apos;Durran Jordan&apos;, &apos;email&apos;: &apos;durran@gmail.com&apos;, &apos;username&apos;: &apos;durran&apos;}
&lt;p&gt;Message: fix(&lt;a href=&quot;https://jira.mongodb.org/browse/DRIVERS-2415&quot; title=&quot;Implement OIDC SASL mechanism&quot; class=&quot;issue-link&quot; data-issue-key=&quot;DRIVERS-2415&quot;&gt;DRIVERS-2415&lt;/a&gt;): bring back token endpoint&lt;br/&gt;
Branch: &lt;a href=&quot;https://jira.mongodb.org/browse/DRIVERS-2415&quot; title=&quot;Implement OIDC SASL mechanism&quot; class=&quot;issue-link&quot; data-issue-key=&quot;DRIVERS-2415&quot;&gt;DRIVERS-2415&lt;/a&gt;-orch&lt;br/&gt;
&lt;a href=&quot;https://github.com/mongodb-labs/drivers-evergreen-tools/commit/e1e9e2e2a4f1c5967ac4b95fc52f6ce4ee265d70&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/mongodb-labs/drivers-evergreen-tools/commit/e1e9e2e2a4f1c5967ac4b95fc52f6ce4ee265d70&lt;/a&gt;&lt;/p&gt;</comment>
                            <comment id="5228536" author="xgen-internal-githook" created="Fri, 24 Feb 2023 13:51:18 +0000"  >&lt;p&gt;Author: &lt;/p&gt;
{&apos;name&apos;: &apos;Steven Silvester&apos;, &apos;email&apos;: &apos;steven.silvester@ieee.org&apos;, &apos;username&apos;: &apos;blink1073&apos;}
&lt;p&gt;Message: &lt;a href=&quot;https://jira.mongodb.org/browse/DRIVERS-2415&quot; title=&quot;Implement OIDC SASL mechanism&quot; class=&quot;issue-link&quot; data-issue-key=&quot;DRIVERS-2415&quot;&gt;DRIVERS-2415&lt;/a&gt; Implement OIDC SASL mechanism (#260)&lt;/p&gt;

&lt;p&gt;Co-authored-by: Durran Jordan &amp;lt;durran@gmail.com&amp;gt;&lt;br/&gt;
Co-authored-by: DmitryLukyanov &amp;lt;dmitry.lukyanov@mongodb.com&amp;gt;&lt;br/&gt;
Branch: master&lt;br/&gt;
&lt;a href=&quot;https://github.com/mongodb-labs/drivers-evergreen-tools/commit/e8b66aaba8a7b3cf482a8f1a60fca264068f5fcb&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/mongodb-labs/drivers-evergreen-tools/commit/e8b66aaba8a7b3cf482a8f1a60fca264068f5fcb&lt;/a&gt;&lt;/p&gt;</comment>
                            <comment id="5226183" author="xgen-internal-githook" created="Thu, 23 Feb 2023 18:57:54 +0000"  >&lt;p&gt;Author: &lt;/p&gt;
{&apos;name&apos;: &apos;Steven Silvester&apos;, &apos;email&apos;: &apos;steven.silvester@ieee.org&apos;, &apos;username&apos;: &apos;blink1073&apos;}
&lt;p&gt;Message: &lt;a href=&quot;https://jira.mongodb.org/browse/DRIVERS-2415&quot; title=&quot;Implement OIDC SASL mechanism&quot; class=&quot;issue-link&quot; data-issue-key=&quot;DRIVERS-2415&quot;&gt;DRIVERS-2415&lt;/a&gt; Implement OIDC SASL mechanism (#1365)&lt;/p&gt;

&lt;p&gt;Co-authored-by: Anna Henningsen &amp;lt;github@addaleax.net&amp;gt;&lt;br/&gt;
Co-authored-by: Durran Jordan &amp;lt;durran@gmail.com&amp;gt;&lt;br/&gt;
Branch: master&lt;br/&gt;
&lt;a href=&quot;https://github.com/mongodb/specifications/commit/4c0bc035af65ccfe98617e8472e2e81c19ffbe23&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/mongodb/specifications/commit/4c0bc035af65ccfe98617e8472e2e81c19ffbe23&lt;/a&gt;&lt;/p&gt;</comment>
                    </comments>
                <issuelinks>
                            <issuelinktype id="10011">
                    <name>Depends</name>
                                            <outwardlinks description="depends on">
                                        <issuelink>
            <issuekey id="2285364">SERVER-74735</issuekey>
        </issuelink>
                            </outwardlinks>
                                                                <inwardlinks description="is depended on by">
                                        <issuelink>
            <issuekey id="2326270">DRIVERS-2615</issuekey>
        </issuelink>
            <issuelink>
            <issuekey id="2260874">DRIVERS-2550</issuekey>
        </issuelink>
            <issuelink>
            <issuekey id="2309055">DRIVERS-2601</issuekey>
        </issuelink>
            <issuelink>
            <issuekey id="2202784">DRIVERS-2508</issuekey>
        </issuelink>
                            </inwardlinks>
                                    </issuelinktype>
                            <issuelinktype id="10010">
                    <name>Duplicate</name>
                                                                <inwardlinks description="is duplicated by">
                                                        </inwardlinks>
                                    </issuelinktype>
                            <issuelinktype id="10020">
                    <name>Gantt Dependency</name>
                                            <outwardlinks description="has to be done before">
                                        <issuelink>
            <issuekey id="2116227">DRIVERS-2416</issuekey>
        </issuelink>
                            </outwardlinks>
                                                        </issuelinktype>
                            <issuelinktype id="10620">
                    <name>Issue split</name>
                                            <outwardlinks description="split to">
                                        <issuelink>
            <issuekey id="2155369">RUBY-3148</issuekey>
        </issuelink>
            <issuelink>
            <issuekey id="2155370">RUST-1497</issuekey>
        </issuelink>
            <issuelink>
            <issuekey id="2155368">PHPLIB-1002</issuekey>
        </issuelink>
            <issuelink>
            <issuekey id="2155364">JAVA-4757</issuekey>
        </issuelink>
            <issuelink>
            <issuekey id="2155366">MOTOR-1040</issuekey>
        </issuelink>
            <issuelink>
            <issuekey id="2155365">NODE-4692</issuekey>
        </issuelink>
            <issuelink>
            <issuekey id="2155367">PYTHON-3460</issuekey>
        </issuelink>
            <issuelink>
            <issuekey id="2155360">CDRIVER-4489</issuekey>
        </issuelink>
            <issuelink>
            <issuekey id="2155361">CXX-2590</issuekey>
        </issuelink>
            <issuelink>
            <issuekey id="2155363">GODRIVER-2574</issuekey>
        </issuelink>
            <issuelink>
            <issuekey id="2207454">CSHARP-4448</issuekey>
        </issuelink>
                            </outwardlinks>
                                                        </issuelinktype>
                            <issuelinktype id="10520">
                    <name>Problem/Incident</name>
                                            <outwardlinks description="causes">
                                                        </outwardlinks>
                                                        </issuelinktype>
                            <issuelinktype id="10012">
                    <name>Related</name>
                                            <outwardlinks description="related to">
                                        <issuelink>
            <issuekey id="2299233">DRIVERS-2585</issuekey>
        </issuelink>
            <issuelink>
            <issuekey id="2116227">DRIVERS-2416</issuekey>
        </issuelink>
            <issuelink>
            <issuekey id="2202784">DRIVERS-2508</issuekey>
        </issuelink>
            <issuelink>
            <issuekey id="2326325">DRIVERS-2616</issuekey>
        </issuelink>
                            </outwardlinks>
                                                                <inwardlinks description="is related to">
                                                        </inwardlinks>
                                    </issuelinktype>
                    </issuelinks>
                <attachments>
                    </attachments>
                <subtasks>
                    </subtasks>
                <customfields>
                                                                                                                                                                                                                                                                                                            <customfield id="customfield_20965" key="com.atlassian.jira.plugin.system.customfieldtypes:float">
                        <customfieldname>Cost Threshold %</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>100.0</customfieldvalue>
                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_20963" key="com.atlassian.jira.plugin.system.customfieldtypes:float">
                        <customfieldname>Cost to Date</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>0.0</customfieldvalue>
                        </customfieldvalues>
                    </customfield>
                                                                                                                        <customfield id="customfield_13653" key="com.atlassian.jira.plugin.system.customfieldtypes:textarea">
                        <customfieldname>Detailed Project Statuses</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>&lt;p&gt;Engineer(s): Matt Dale&lt;/p&gt;

&lt;p&gt;2024-01-23:&lt;/p&gt;
&lt;ul&gt;
	&lt;li&gt;Expected timeline for spec approval: Jan 26&lt;/li&gt;
	&lt;li&gt;What was completed over the last two weeks?
	&lt;ul&gt;
		&lt;li&gt;Unified the &quot;machine&quot; and &quot;human&quot; OIDC auth specs into a single spec that should be easier for drivers to implement incrementally (i.e. start with machine flow, extend to human flow if necessary).&lt;/li&gt;
		&lt;li&gt;Made the OIDC callback APIs more idiomatic and flexible based on feedback from different drivers engineers.&lt;/li&gt;
		&lt;li&gt;Expanded OIDC prose and spec tests.&lt;/li&gt;
	&lt;/ul&gt;
	&lt;/li&gt;
	&lt;li&gt;What&apos;s the focus over the next two weeks?
	&lt;ul&gt;
		&lt;li&gt;Get OIDC PR approved by everyone and merged.&lt;/li&gt;
		&lt;li&gt;Extend OIDC spec to include Azure built-in OIDC provider integration.&lt;/li&gt;
	&lt;/ul&gt;
	&lt;/li&gt;
	&lt;li&gt;Risks
	&lt;ul&gt;
		&lt;li&gt;DPoP will introduce some changes to the human auth flow and callback API. The current spec should be flexible enough to allow those additions, but there is still some risk that unexpected complexity can disrupt the spec timeline.&lt;/li&gt;
		&lt;li&gt;It&apos;s not clear when we will be able to test GCP auth; depends on changes in the server, and then on setting up a GCP OIDC provider to test with.&lt;/li&gt;
	&lt;/ul&gt;
	&lt;/li&gt;
&lt;/ul&gt;


&lt;hr /&gt;
&lt;p&gt;Engineer(s): Matt Dale&lt;/p&gt;

&lt;p&gt;2023-12-12:&lt;/p&gt;
&lt;ul&gt;
	&lt;li&gt;Estimate 1 more week to finish the spec PR review and merge it; should be ready for driver implementation the week of Dec 25.&lt;/li&gt;
	&lt;li&gt;Accomplished in the last two weeks:
	&lt;ul&gt;
		&lt;li&gt;Finish OIDC prose tests.&lt;/li&gt;
		&lt;li&gt;Working with Steve to implement the updated spec and prose tests in Python.&lt;/li&gt;
		&lt;li&gt;&lt;a href=&quot;https://jira.mongodb.org/browse/DRIVERS-2672&quot; title=&quot;OIDC: Implement Machine Callback Mechanism&quot; class=&quot;issue-link&quot; data-issue-key=&quot;DRIVERS-2672&quot;&gt;DRIVERS-2672&lt;/a&gt; PR is in review; responding to feedback from stakeholders.&lt;/li&gt;
	&lt;/ul&gt;
	&lt;/li&gt;
	&lt;li&gt;Planned for the next two weeks:
	&lt;ul&gt;
		&lt;li&gt;Pausing on OIDC/&lt;a href=&quot;https://jira.mongodb.org/browse/DRIVERS-2672&quot; title=&quot;OIDC: Implement Machine Callback Mechanism&quot; class=&quot;issue-link&quot; data-issue-key=&quot;DRIVERS-2672&quot;&gt;DRIVERS-2672&lt;/a&gt; this week to work on GODRIVER-3039, which is needed by Cloud Backup before Q1 to support MongoDB 7.3&lt;/li&gt;
		&lt;li&gt;Finish reviewing the spec PR and merge it.&lt;/li&gt;
	&lt;/ul&gt;
	&lt;/li&gt;
	&lt;li&gt;Risks/blockers:
	&lt;ul&gt;
		&lt;li&gt;High-priority Go driver work has been pushing out OIDC work. For example, a broken v1.13.0 release caused security errors and strong negative user feedback. Also the upcoming work to support Cloud Backup will also push out OIDC.&lt;/li&gt;
	&lt;/ul&gt;
	&lt;/li&gt;
&lt;/ul&gt;


&lt;hr /&gt;
&lt;p&gt;Engineer(s): Matt Dale&lt;/p&gt;

&lt;p&gt;2023-11-28:&lt;/p&gt;
&lt;ul&gt;
	&lt;li&gt;Accomplished in the last two weeks:
	&lt;ul&gt;
		&lt;li&gt;Draft of OIDC machine workflow specification put up for review.&lt;/li&gt;
		&lt;li&gt;Created proof-of-concept implementation in the Go driver to validate spec requirements.&lt;/li&gt;
		&lt;li&gt;Work with Maxim to validate caching implementation in the Java driver and update the specification based on edge cases discovered.&lt;/li&gt;
		&lt;li&gt;Added unified spec tests and validated in Java and Go drivers.&lt;/li&gt;
	&lt;/ul&gt;
	&lt;/li&gt;
	&lt;li&gt;Planned for the next two weeks:
	&lt;ul&gt;
		&lt;li&gt;Review OIDC machine workflow specification.&lt;/li&gt;
		&lt;li&gt;Add more unified spec and prose tests for OIDC machine workflow.&lt;/li&gt;
		&lt;li&gt;Work with Java, Python, and Node teams to implement OIDC machine workflow.&lt;/li&gt;
	&lt;/ul&gt;
	&lt;/li&gt;
	&lt;li&gt;Risks/blockers:
	&lt;ul&gt;
		&lt;li&gt;Access token caching and expiry turn out to be complex issues and are taking longer than expected to spec and test.&lt;/li&gt;
		&lt;li&gt;For now, we&apos;re relying on the server to tell the driver to rotate the access token (using the ReauthenticationRequired error), but that can cause performance issues for some use cases. We will need to amend the OIDC spec later to require that drivers attempt to rotate the access token before getting a ReauthenticationRequired error.&lt;/li&gt;
	&lt;/ul&gt;
	&lt;/li&gt;
&lt;/ul&gt;


&lt;hr /&gt;
&lt;p&gt;Engineer(s): Steve Silvester&lt;/p&gt;

&lt;p&gt;2023-05-12:&lt;/p&gt;
&lt;ul&gt;
	&lt;li&gt;Python PR merged&lt;/li&gt;
	&lt;li&gt;C# implementation near completion, but has been paused to unblock Rust on the logging work (&lt;a href=&quot;https://jira.mongodb.org/browse/DRIVERS-1204&quot; title=&quot;Easier debugging with standardized logging&quot; class=&quot;issue-link&quot; data-issue-key=&quot;DRIVERS-1204&quot;&gt;DRIVERS-1204&lt;/a&gt;)&lt;/li&gt;
	&lt;li&gt;Node will be the second implementer&lt;/li&gt;
&lt;/ul&gt;


&lt;hr /&gt;
&lt;p&gt;2023-04-28:&lt;/p&gt;
&lt;ul&gt;
	&lt;li&gt;Planning to merge the final spec PR today, to unblock Node and Shell.&lt;/li&gt;
	&lt;li&gt;Python and C# implementations are in final review.&lt;/li&gt;
&lt;/ul&gt;


&lt;hr /&gt;
&lt;p&gt;2023-04-18&lt;/p&gt;
&lt;ul&gt;
	&lt;li&gt;Working through edge cases of cache and reauthorization behavior, aiming to wrap up this week.&lt;/li&gt;
&lt;/ul&gt;


&lt;hr /&gt;
&lt;p&gt;2023-03-31&lt;/p&gt;
&lt;ul&gt;
	&lt;li&gt;Final tech design incorporating WRITING-14037 is in review.&lt;/li&gt;
&lt;/ul&gt;


&lt;hr /&gt;
&lt;p&gt;2023-03-020&lt;/p&gt;
&lt;ul&gt;
	&lt;li&gt;Looking into the impact of WRITING-14037 Risk of Phishing Access Tokens from Clients Using OIDC Authentication on the Drivers.&lt;/li&gt;
	&lt;li&gt;Hope to be finished with the tech design by the end of this week.&lt;/li&gt;
&lt;/ul&gt;


&lt;hr /&gt;
&lt;p&gt;2023-03-07&lt;/p&gt;
&lt;ul&gt;
	&lt;li&gt;Implementation continuing for Python, C#, Node, and Java&lt;/li&gt;
&lt;/ul&gt;


&lt;hr /&gt;
&lt;p&gt;2023-02-16&lt;/p&gt;
&lt;ul&gt;
	&lt;li&gt;Teams currently implementing: Python, C#, Node, and Java&lt;/li&gt;
	&lt;li&gt;Wrapping up the specification as the C# team wraps up their implementation&lt;/li&gt;
	&lt;li&gt;No other risks&lt;/li&gt;
&lt;/ul&gt;
</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_15850" key="com.atlassian.jira.plugins.jira-development-integration-plugin:devsummary">
                        <customfieldname>Development</customfieldname>
                        <customfieldvalues>
                            
                        </customfieldvalues>
                    </customfield>
                                                                                                                        <customfield id="customfield_17052" key="com.atlassian.jira.plugin.system.customfieldtypes:textarea">
                        <customfieldname>Downstream Changes Summary</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>&lt;ul&gt;
	&lt;li&gt;Implement &lt;a href=&quot;https://github.com/mongodb/specifications/blob/474ddfcc335225df4410986be2b10ae41a736d20/source/auth/auth.rst#mongodb-oidc&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;MONGODB-OIDC SASL support&lt;/a&gt;
	&lt;ul&gt;
		&lt;li&gt;Add &lt;a href=&quot;https://github.com/mongodb/specifications/blob/474ddfcc335225df4410986be2b10ae41a736d20/source/auth/tests/mongodb-oidc.rst&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;prose tests&lt;/a&gt; and &lt;a href=&quot;https://github.com/mongodb/specifications/tree/474ddfcc335225df4410986be2b10ae41a736d20/source/auth/tests/unified&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;unified spec tests&lt;/a&gt;&lt;/li&gt;
		&lt;li&gt;Handle &lt;a href=&quot;https://github.com/mongodb/specifications/blob/474ddfcc335225df4410986be2b10ae41a736d20/source/auth/auth.rst#id41&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;reauthentication&lt;/a&gt; for all auth types&lt;/li&gt;
	&lt;/ul&gt;
	&lt;/li&gt;
	&lt;li&gt;See example implementation in &lt;a href=&quot;https://github.com/mongodb/mongo-python-driver/commit/afd7e1c2cdeb7bf33a9e21036450ff0a56fcc39a&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;Python&lt;/a&gt;&#160;&lt;/li&gt;
	&lt;li&gt;Credentials are in this &lt;a href=&quot;https://docs.google.com/document/d/1e3C8DAFMfH2txucIohLarYGgyhilCpAlxTak2En1Y2Q/edit?userstoinvite=maxim.katcharov@mongodb.com#heading=h.ikvcngabcc09&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;Doc&lt;/a&gt;&lt;/li&gt;
&lt;/ul&gt;
</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_10951" key="com.atlassian.jira.plugin.system.customfieldtypes:radiobuttons">
                        <customfieldname>Driver Changes</customfieldname>
                        <customfieldvalues>
                                <customfieldvalue key="10748"><![CDATA[Needed]]></customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_23952" key="com.onresolve.jira.groovy.groovyrunner:scripted-field">
                        <customfieldname>Driver Compliance</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue><![CDATA[<style type='text/css'>
         #scriptField, #scriptField *{
                border: 1px solid black;
            }

            #scriptField{
                border-collapse: collapse;
            }

            #scriptField td {
                text-align: center; /* Center-align text in table cells */
            }

            #scriptField td.key {
                text-align: left; /* Left-align text in the Key column */
            }

            #scriptField a {
                text-decoration: none; /* Remove underlines from links */
                border: none; /* Remove border from links */
            }
            
            /* Add green background color to cells with FixVersion */
            #scriptField td.hasFixVersion {
                background-color: #00FF00; /* Green color code */
            }

            /* Center-align the first row headers */
            #scriptField th {
                text-align: center;
            }
        </style>
<table id='scriptField'>
  <tr>
    <th>Key</th>
    <th>Status/Resolution</th>
    <th>FixVersion</th>
  </tr>
  <tr>
    <td class='key'>
      <a href='https://jira.mongodb.org/browse/CDRIVER-4489'>CDRIVER-4489</a>
    </td>
    <td>Backlog</td>
    <td class=''></td>
  </tr>
  <tr>
    <td class='key'>
      <a href='https://jira.mongodb.org/browse/CXX-2590'>CXX-2590</a>
    </td>
    <td>Backlog</td>
    <td class=''></td>
  </tr>
  <tr>
    <td class='key'>
      <a href='https://jira.mongodb.org/browse/GODRIVER-2574'>GODRIVER-2574</a>
    </td>
    <td>Blocked</td>
    <td class=''></td>
  </tr>
  <tr>
    <td class='key'>
      <a href='https://jira.mongodb.org/browse/JAVA-4757'>JAVA-4757</a>
    </td>
    <td>Incomplete</td>
    <td class=''></td>
  </tr>
  <tr>
    <td class='key'>
      <a href='https://jira.mongodb.org/browse/NODE-4692'>NODE-4692</a>
    </td>
    <td>Fixed</td>
    <td class='hasFixVersion'>5.1.0, 5.2.0</td>
  </tr>
  <tr>
    <td class='key'>
      <a href='https://jira.mongodb.org/browse/MOTOR-1040'>MOTOR-1040</a>
    </td>
    <td>Duplicate</td>
    <td class=''></td>
  </tr>
  <tr>
    <td class='key'>
      <a href='https://jira.mongodb.org/browse/PYTHON-3460'>PYTHON-3460</a>
    </td>
    <td>Done</td>
    <td class=''></td>
  </tr>
  <tr>
    <td class='key'>
      <a href='https://jira.mongodb.org/browse/PHPLIB-1002'>PHPLIB-1002</a>
    </td>
    <td>Blocked</td>
    <td class=''></td>
  </tr>
  <tr>
    <td class='key'>
      <a href='https://jira.mongodb.org/browse/RUBY-3148'>RUBY-3148</a>
    </td>
    <td>Backlog</td>
    <td class=''></td>
  </tr>
  <tr>
    <td class='key'>
      <a href='https://jira.mongodb.org/browse/RUST-1497'>RUST-1497</a>
    </td>
    <td>Backlog</td>
    <td class=''></td>
  </tr>
  <tr>
    <td class='key'>
      <a href='https://jira.mongodb.org/browse/SWIFT-1646'>SWIFT-1646</a>
    </td>
    <td>Won't Do</td>
    <td class=''></td>
  </tr>
  <tr>
    <td class='key'>
      <a href='https://jira.mongodb.org/browse/CSHARP-4448'>CSHARP-4448</a>
    </td>
    <td>In Progress</td>
    <td class=''></td>
  </tr>
</table>]]></customfieldvalue>


                        </customfieldvalues>
                    </customfield>
                                                                                            <customfield id="customfield_18362" key="com.atlassian.jira.plugin.system.customfieldtypes:userpicker">
                        <customfieldname>Engineering Lead</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>james.kovacs@mongodb.com</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_10860" key="com.pyxis.greenhopper.jira:gh-epic-color">
                        <customfieldname>Epic Colour</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>ghx-label-7</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                                            <customfield id="customfield_10858" key="com.pyxis.greenhopper.jira:gh-epic-label">
                        <customfieldname>Epic Name</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>&amp;nbsp;Implement OIDC SASL mechanism</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_10859" key="com.pyxis.greenhopper.jira:gh-epic-status">
                        <customfieldname>Epic Status</customfieldname>
                        <customfieldvalues>
                                <customfieldvalue key="10640"><![CDATA[To Do]]></customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                                                                        <customfield id="customfield_20964" key="com.atlassian.jira.plugin.system.customfieldtypes:float">
                        <customfieldname>Final Cost Estimate</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>0.0</customfieldvalue>
                        </customfieldvalues>
                    </customfield>
                                                                                                                        <customfield id="customfield_23450" key="com.onresolve.jira.groovy.groovyrunner:scripted-field">
                        <customfieldname>Initiative Link</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue><![CDATA[
                            <a href="https://jira.mongodb.org/browse/INIT-140">INIT-140</a> - Unified and Modern Authn/Authnz Across Control and Data planes (Phase A): MongoDB OIDC Authentication  
                    ]]></customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                            <customfield id="customfield_18359" key="com.atlassian.jira.plugin.system.customfieldtypes:userpicker">
                        <customfieldname>Program Manager</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>jessica.sigafoos@mongodb.com</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_21553" key="com.atlassian.jira.plugin.system.customfieldtypes:labels">
                        <customfieldname>Quarter</customfieldname>
                        <customfieldvalues>
                                        <label>FY23Q4</label>
            <label>FY24Q1</label>
            <label>FY24Q2</label>
    
                        </customfieldvalues>
                    </customfield>
                                                                                            <customfield id="customfield_12550" key="com.pyxis.greenhopper.jira:gh-lexo-rank">
                        <customfieldname>Rank</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>2|hr1k1p:hc</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_10558" key="com.pyxis.greenhopper.jira:gh-global-rank">
                        <customfieldname>Rank (Obsolete)</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>9223372036854775807</customfieldvalue>
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                        <customfield id="customfield_10856" key="com.atlassian.jira.plugin.system.customfieldtypes:float">
                        <customfieldname>Scope Cost Estimate</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>0.0</customfieldvalue>
                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_22279" key="com.atlassian.jira.plugin.system.customfieldtypes:labels">
                        <customfieldname>Server Compat</customfieldname>
                        <customfieldvalues>
                                        <label>7.0</label>
    
                        </customfieldvalues>
                    </customfield>
                                                                                                                        <customfield id="customfield_14261" key="com.atlassian.jira.plugin.system.customfieldtypes:datepicker">
                        <customfieldname>Start date</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>Fri, 12 May 2023 00:00:00 +0000</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                        <customfield id="customfield_21457" key="com.atlassian.jira.plugin.system.customfieldtypes:textarea">
                        <customfieldname>Upstream Changes Summary</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>&lt;p&gt;This ticket removes authorization, token, and device authorization endpoints from advertised OIDC SASL metadata, and server configuration. In its place, it adds the Issuer URI. &lt;/p&gt;</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                            </customfields>
    </item>
</channel>
</rss>