-
Notifications
You must be signed in to change notification settings - Fork 330
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add support for sha256_password #281
Comments
From the documentation:
I'll initially plan to support just SSL connections. That page doesn't explain how the client side plugin works, other than:
Perhaps this means it just works the same as |
This is a blocking issue, we have a plan to use MySqlConnector instead of the oracle one in Azure database for MySQL service. But we have enforced sha256, without sha256 supporting, we cannot get our service work with MySqlConnector. |
BTW, Could you please make the test not only the performance but also the stability. The oracle one lost connection sometimes and has a memory leak bug. That's the one of reasons to switch to yours. |
Hi @bgrainger , sha256_password plugin have two scenario, 1. SSL enabled, it just works like clear password, this scenario only need little effort. 2. SSL does not enabled, and it will use RSA mechanism. Describe in the link https://dev.mysql.com/doc/refman/5.7/en/sha256-pluggable-authentication.html . |
Here is a good Stack Overflow Post on RSA in .NET In the unencrypted case, the client can optionally provide the server RSA public key locally. This would need a new connection string option such as |
If the consumer doesn't provide the server RSA public key, the connector library can request it by sending the single byte |
I've opened a PR that adds Supporting non-SSL connections requires RSA public-key encryption. I have some WIP code on my |
@elemount has opened PyMySQL/PyMySQL#583 which demonstrates how to write this code in Python. |
We need both scenario, if you need, @elemount will help you implement that. |
@kagamine I just found the bug (and edited my previous comment); both scenarios (SSL and non-SSL) will be supported in MySqlConnector. |
Just updated PR #284 with |
Shipped in 0.22.0. |
Since Azure will enforce sha256 soon, could you please add support for sha256_password? Or @elemount will help you to implement this. He is working on support sha256_password for each mysql clients.
The text was updated successfully, but these errors were encountered: