mongo:mongo-client namespace does not support usernames with a comma [DATAMONGO-1257] #2175
Comments
|
Oliver Drotbohm commented Good catch, John. Any chance you provide an – of course anonymized – authentication |
|
Christoph Strobl commented we could use |
|
John Mark commented Oliver, Christoph's example pretty much matches the pattern of what my authentication |
|
Oliver Drotbohm commented I've merged Christoph's PR and added a hint to the quoting mechanism in the XSD for the 1.7 and 1.8 versions |
|
John Mark commented Oliver, Christoph, thanks for fixing this in a timely manner, I appreciate it! |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
John Mark opened DATAMONGO-1257 and commented
When using a mongo database with X-509 authentication, the username of the user is the subject DN from the X-509 certificate (see http://docs.mongodb.org/manual/tutorial/configure-x509-client-authentication/). The subject DN usually contains commas in it. This causes problems with trying to setup the mongo client using the
mongo:mongo-clientnamespace with xml configuration since it expectscredentialsto be a comma separated list of usernames and splits on comma (,)Another problem is that the credential is expected to be in
username:password@databaseformat, but when using X-509 authentication there is no password.A third issue that I noticed was that there seems to be a bug in
org.springframework.data.mongodb.config.MongoCredentialPropertyEditorsince when it checks for the presence of:and@in the property, it does so on the original property, not the split string, which can cause NPEs if the colon or @ exists in the property but not on each splitAffects: 1.7.1 (Fowler SR1)
Referenced from: pull request #310
Backported to: 1.7.2 (Fowler SR2)
The text was updated successfully, but these errors were encountered: