Uploaded image for project: 'Couchbase Documentation'
  1. Couchbase Documentation
  2. DOC-3797

descriptions about xdcr scramsha authentication are inaccurate

    XMLWordPrintable

Details

    • Bug
    • Resolution: Unresolved
    • Major
    • None
    • Server 5.5/Vulcan
    • xdcr
    • None
    • DOC-S20-Jul13[RC], DOC-S21-Jul20[Vulcan GA], DOC-S23-Aug17(Alice Beta)

    Description

      There are several issues with the documentation on scramsha authentication in the following section:

      https://developer.couchbase.com/documentation/server/5.5/xdcr/xdcr-managing-security.html

      1. The UI snapshot is out of date, which needs to be updated to the 5.5 version.

      2. "By default, XDCR uses the Simple Authentication and Security Layer (SASL) framework to determine how username and password should be sent: either as plain text, or as encrypted by one of the members of the Salted Challenge Response Authentication Mechanism family of hash functions; which are SCRAM-SHA1, SCRAM-SHA256, and SCRAM-SHA512."

      This is not correct.

      By default, xdcr uses SASL.

      If half secure mode is selected, ("Enable secure connection" checkbox is checked, and "Half" radio button is selected on UI), xdcr uses SCRAM-SHA.

      If full secure mode is selected, ("Enable secure connection" checkbox is checked, and "Full" radio button is selected on UI), xdcr uses TLS encryption.

      The texts need to be modified and re-arranged accordingly.

       

      Attachments

        No reviews matched the request. Check your Options in the drop-down menu of this sections header.

        Activity

          People

            tony.hillman Tony Hillman (Inactive)
            yu Yu Sui (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

              Created:
              Updated:

              Gerrit Reviews

                There are no open Gerrit changes

                PagerDuty