Uploaded image for project: 'Compass '
  1. Compass
  2. COMPASS-8948

Retry OIDC connection without system certificates on TLS errors

XMLWordPrintableJSON

    • Type: Icon: Bug Bug
    • Resolution: Unresolved
    • Priority: Icon: Major - P3 Major - P3
    • 1.45.2
    • Affects Version/s: None
    • Component/s: OIDC DB Auth
    • None
    • Environment:
      OS:
      node.js / npm versions:
      Additional info:
    • Developer Tools

      We've gotten two reports of folks running into a `cert has expired` error when connecting with OIDC. Other folks can connect. This is likely a result of the system certificates being added when haven't fully been resolved yet. This ticket involves handling the error when this occurs so that we retry the connection with the fallback to not passing the system certificates, similar to what we did for normal TLS connections in MONGOSH-1935.

       

      https://github.com/mongodb-js/compass/blob/3178544224bf6d8e6189edfc472d9f5ae65c300b/packages/data-service/src/connect-mongo-client.ts#L116 

       

      I should mention that I have not successfully reproduced this issue. It might be a good first step to do that so we can confirm its an issue and write a regression test.

            Assignee:
            Unassigned Unassigned
            Reporter:
            rhys.howell@mongodb.com Rhys Howell
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Created:
              Updated: