Uploaded image for project: 'Core Server'
  1. Core Server
  2. SERVER-26257

DBDirectClient should not support auth

XMLWordPrintableJSON

    • Type: Icon: Task Task
    • Resolution: Done
    • Priority: Icon: Major - P3 Major - P3
    • 4.9.0
    • Affects Version/s: 3.3.12
    • Component/s: None
    • Fully Compatible
    • Security 2021-01-11, Security 2021-01-25

      Per SERVER-26101, the auth method is not supported on DBDirectClent. The fix in SERVER-26101 removed it from the JavaScript context, but there may other indirect paths to this function.

      The DBDirectClient class should override the auth method, and change it to uassert that it is not supported to be sure.

            Assignee:
            sergey.galtsev@mongodb.com Sergey Galtsev (Inactive)
            Reporter:
            mark.benvenuto@mongodb.com Mark Benvenuto
            Votes:
            0 Vote for this issue
            Watchers:
            4 Start watching this issue

              Created:
              Updated:
              Resolved: