Specifying SSL and certs

Carmine DiMascio shared this question 12 months ago
Answered

How can I configure dbKoda with a certificate... self signed, invalid or CA signed?

Comments (10)

photo
1

Hi Carmine,


Currently we only support standard SCRAM-SHA-1 authentication but we do have plans to introduce other forms of authentication in upcoming releases.


Am I right in thinking you would like to configure a connection to a server that requires a x.509 certificate? So we would need to support both the --sslPEMKeyFile and --sslCAFile and then perform a "$external" authentication on connect?


Thanks,

Guy

photo
1

Yes that is correct. For dev, purposes the --sslAllowInvalidCertificates will also suffice (for now).

Any ETA on when we might expect such a feature. Without it, dbKoda isn't yet an option for me.

photo
2

Hi Carmine,

sslAllowInvalidCertificate support should go into the nightly builds by Monday next week. I'll reach out when it is there.

Regards,

Guy

photo
1

Thanks!

photo
1

Hi Carmine,

The nightly builds now have a "Allow Invalid Certificates" checkbox that implements the --sslAllowInvalidCertificates flag on the mongo shell connection. We did some basic smoke testing and it seems to work OK but bear in mind we haven't run all our automated tests with the flag and also the nightly builds are work in progress with a lot of partially implemented features. However, I think it will allow you to connect and use the core features of the product just fine.

You can download the nightly builds from https://github.com/SouthbankSoftware/dbkoda/releases . If you get a chance, let me know if that works OK, and any other feedback or features requests would also be very welcome :-)

Regards,

Guy

photo
1

Hi Guy, I tried the latest pre release, unfortunately, the connection wizard seems broken. For example, it loses SCRAM-SHA-1 username and password and replaces the username with false and populates the authentication database with true. Those fields are no longer editable and thus I can't even attempt to connect.

photo
1

Hi Carmine,

Sorry about that. Nightly builds can have a bunch of issues.

I can reproduce your issue with my build - it occurs when you are editing an existing profile. The bug was created a few days ago. We'll fix that today so the next nightly build should be fixed.

However, you should be able to create a new profile without issue on the build you have. I've created a bunch of profiles on last nights build I just can't edit the profiles once i've created them.

If you want to wait for the next nightly builds, they occur about 4am Melbourne time which is about 11am PST.

Regards and sorry,

Guy

photo
1

Hi Carmine,

I checked last nights nightly build and the issue with editing an existing connection seems to be fixed, so if you get a chance give it a go and let us know what you think. If you have any suggestions or feedback we're all ears.

Cheers,

Guy

photo
1

Guy, its working wonderfully in version 0.8.0. Thanks! I'm enjoying dbKoda

photo
1

Thanks Carmine, that is great news. Let me know if there's any features you'd like to see in a future release - we are very intent on our roadmap being community driven so are listening closely to early adopters.

We are giving out a $10 Amazon gift voucher to everybody who fills out our survey at https://www.surveymonkey.com/r/LKYYY9Q . It's just 11 questions and only takes 5 minutes.


Thanks again,

Guy

photo