Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

changefeedccl: support SCRAM-SHA-256 and SCRAM-SHA-512 sasl authentication mechanisms #55788

Closed
ajwerner opened this issue Oct 20, 2020 · 3 comments
Closed

changefeedccl: support SCRAM-SHA-256 and SCRAM-SHA-512 sasl authentication mechanisms #55788

ajwerner opened this issue Oct 20, 2020 · 3 comments
Labels
A-cdc Change Data Capture C-enhancement Solution expected to add code/behavior + preserve backward-compat (pg compat issues are exception) T-cdc

Comments

@ajwerner
Copy link
Contributor

ajwerner commented Oct 20, 2020
edited by exalate-issue-sync bot
Loading

Is your feature request related to a problem? Please describe.

The Confluent Platform (see here) and MKS (see here) support SASL authentication using a SCRAM protocol. We currently only support the PLAIN SASL mechanism. On MKS, it appears that password authentication requires this mechanism.

Describe the solution you'd like

We should support a new sasl_mechansim which would allow the client to specify an alternative to PLAIN.

Describe alternatives you've considered

Both MKS and Confluent Platform support certificate based authentication. That can be utilized to build secure authentication but may not be advisable for practical reasons or other issues regarding key management and revocation.

Epic CRDB-2256
@ajwerner ajwerner added the A-cdc Change Data Capture label Oct 20, 2020
@blathers-crl
Copy link

blathers-crl bot commented Oct 20, 2020

Hi @ajwerner, I've guessed the C-ategory of your issue and suitably labeled it. Please re-label if inaccurate.

🦉 Hoot! I am a Blathers, a bot for CockroachDB. My owner is otan.

@blathers-crl blathers-crl bot added the C-enhancement Solution expected to add code/behavior + preserve backward-compat (pg compat issues are exception) label Oct 20, 2020
@ajwerner ajwerner mentioned this issue Oct 20, 2020
Closed
@kevinkokomani kevinkokomani mentioned this issue Jan 28, 2021
Closed
@amruss
Copy link
Contributor

amruss commented Feb 19, 2021

Closing due to #60150

@amruss amruss closed this as completed Feb 19, 2021
@Neustradamus Neustradamus mentioned this issue Jan 11, 2022
Closed
4 tasks
@Neustradamus

This comment has been minimized.

Sign in to view
This was referenced Jan 11, 2022
Merged
Open
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
A-cdc Change Data Capture C-enhancement Solution expected to add code/behavior + preserve backward-compat (pg compat issues are exception) T-cdc
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@Neustradamus @ajwerner @amruss @elinorgarcia