Uploaded image for project: 'Core Server'
  1. Core Server
  2. SERVER-31640

Parse Logical Session IDs for authenticated clients under localhost auth bypass

    • Type: Icon: Bug Bug
    • Resolution: Fixed
    • Priority: Icon: Major - P3 Major - P3
    • 3.6.0-rc4
    • Affects Version/s: None
    • Component/s: Internal Code
    • None
    • Fully Compatible
    • ALL
    • Platforms 2017-11-13
    • 0

      A mongos may connect to a shard server using a localhost connection. LSIDs should be parsed from commands executed via this connection. Because the shard may not have local users, this connection may be under the localhost auth bypass, which normally prevents LSID parsing. However, the mongos will authenticate as the __system user. Authentication, even when no users exist on the system, should cause LSID parsing to occur.

            Assignee:
            spencer.jackson@mongodb.com Spencer Jackson
            Reporter:
            spencer.jackson@mongodb.com Spencer Jackson
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Created:
              Updated:
              Resolved: