z/TPF support for MongoDB authentication
z/TPF support for MongoDB authentication
is the process that verifies the identity of a MongoDB remote client.
When you enable security for the z/TPF server for MongoDB by specifying --auth on the XPARM parameter of the InetD definition, authentication is required before a MongoDB remote client can access z/TPF data. For information about how to set up authentication for z/TPF support for MongoDB, see Preparing the z/TPF system for data access by using z/TPF support for MongoDB.
Authentication of a user ID and password by using z/TPF support for MongoDB can be done in one of the following ways:
- Using the z/TPF user security database.
- Using the MongoDB authentication user exit (UATH).
A user ID is authenticated when the following conditions are met:
- Security is enabled for z/TPF support for MongoDB.
- A user authenticates from a MongoDB remote client.
z/TPF support for MongoDB tries to authenticate the user ID by
using the z/TPF user security database first. z/TPF support for MongoDB invokes the
MongoDB authentication user exit (UATH) only when
either of the following conditions is met:
- The user ID is not defined in the z/TPF user security database for the MongoDB database.
- The user ID is defined in the z/TPF user security database for the MongoDB database, but a password was not specified for the user ID.
For more information about the user exit interfaces and examples for the MongoDB authentication user exit (UATH), see the comments in the user exit (uath.cpp).