Loading...

XML

Word

Printable

JSON

Type: Improvement
Resolution: Fixed
Priority: Major - P3
Fix Version/s: 5.0.0
Affects Version/s: None
Component/s: Internal Code
Labels:
None

Backwards Compatibility:
Fully Compatible
Sprint:
Security 2021-01-25, Security 2021-02-08, Security 2021-02-22
Confidence Status:
None
Work Order:
3

Aha! Reference:
None
Tracking Level:
None
Risk Status:
None
Exec Notes:
None
Goal Name:
None
Goal Link:
None

The AuthenticationSession is a RAII object which lives for the duration of an authentication attempt. Events that need to happen over the course of an Authentication should be migrated to its lifecycle methods, so that maintainers of saslStart and saslContinue don't need to think about them as much. The session will need methods to inform it when attempts succeed, fail(with a code), or learn the authentication names of clients.

We should move calls to audit::logAuthentication and auth counter increments to the object.

depends on

SERVER-52863 Instantiate AuthenticationSession during SASL mechanism negotiation

Closed

SERVER-54215 Rewire sasl/authenticate library dependencies

Closed

SERVER-54218 Update authentication counter patterns of use

Closed

is duplicated by

SERVER-54455 Coverity analysis defect 117647: Uninitialized pointer field

Closed

SERVER-12765 Audit username for x.509 cluster authentication operations

Closed

Assignee:: Benjamin Caimano (Inactive)
Reporter:: Spencer Jackson
Participants:: Benjamin Caimano, Githook User, Spencer Jackson
Votes:: 0 Vote for this issue
Watchers:: 2 Start watching this issue

Created:: Nov 13 2020 07:36:56 PM UTC
Updated:: Oct 29 2023 10:00:24 PM UTC
Resolved:: Feb 18 2021 04:32:26 PM UTC
Confidence Status Last Update:: 21/Jan/21 4:13 PM

Details

Description

Attachments

Issue Links

Activity

People

Dates