-
Type: Improvement
-
Resolution: Fixed
-
Priority: Major - P3
-
Affects Version/s: None
-
Component/s: Internal Code
-
None
-
Fully Compatible
-
Security 2021-01-25, Security 2021-02-08, Security 2021-02-22
The AuthenticationSession is a RAII object which lives for the duration of an authentication attempt. Events that need to happen over the course of an Authentication should be migrated to its lifecycle methods, so that maintainers of saslStart and saslContinue don't need to think about them as much. The session will need methods to inform it when attempts succeed, fail(with a code), or learn the authentication names of clients.
We should move calls to audit::logAuthentication and auth counter increments to the object.
- depends on
-
SERVER-52863 Instantiate AuthenticationSession during SASL mechanism negotiation
- Closed
-
SERVER-54215 Rewire sasl/authenticate library dependencies
- Closed
-
SERVER-54218 Update authentication counter patterns of use
- Closed
- is duplicated by
-
SERVER-54455 Coverity analysis defect 117647: Uninitialized pointer field
- Closed
-
SERVER-12765 Audit username for x.509 cluster authentication operations
- Closed