DOCSP-37509 - Authentication (#52)

Co-authored-by: Jordan Smith <[email protected]>

Author: mongoKart

source/connect/connection-options.txt

@@ -146,6 +146,63 @@ Server Selection
        | **MongoClient Example**: ``server_selector = your_function``
        | **Connection URI Example**: N/A
 
+Authentication
+~~~~~~~~~~~~~~
+
+.. list-table::
+   :header-rows: 1
+   :widths: 30 70
+
+   * - Connection Option
+     - Description
+
+   * - **authMechanism**
+     - | The mechanism {+driver-short+} uses to authenticate the application. Valid
+       | options are defined in `MECHANISMS. <{+api-root+}pymongo/database.html#pymongo.auth.MECHANISMS>`__
+       |
+       | **Data Type**: {+string-data-type+}
+       | **Default**: ``"SCRAM-SHA-256"`` when connecting to MongoDB v4.0 or later.
+       | ``"SCRAM-SHA-1"`` when connecting to MongoDB v3.0 through v3.13.
+       | **MongoClient Example**: ``authMechanism = "MONGODB-X509"``
+       | **Connection URI Example**: ``authMechanism=MONGODB-X509``
+  
+   * - **authMechanismProperties**
+     - | Options specific to the authentication mechanism. Not needed for all authentication
+       | mechanisms.
+       |
+       | **Data Type**: {+string-data-type+}
+       | **Default**: ``""``
+       | **MongoClient Example**: ``authMechanismProperties = "AWS_SESSION_TOKEN:12345"``
+       | **Connection URI Example**: ``authMechanismProperties=AWS_SESSION_TOKEN:12435``
+
+   * - **authSource**
+     - | The database to authenticate against.
+       |
+       | **Data Type**: {+string-data-type+}
+       | **Default**: The database in the connection URI, or ``"admin"`` if none is provided
+       | **MongoClient Example**: ``authSource = "admin"``
+       | **Connection URI Example**: ``authSource=admin``
+
+   * - **username**
+     - | The username for authentication. When this option is included in a connection
+       | URI, you must percent-escape it.
+       |
+       | **Data Type**: {+string-data-type+}
+       | **Default**: ``""``
+       | **MongoClient Example**: ``username = "my user"``
+       | **Connection URI Example**: ``username=my+user``
+
+   * - **password**
+     - | The password for authentication. When this option is included in a connection
+       | URI, you must percent-escape it.
+       |
+       | **Data Type**: {+string-data-type+}
+       | **Default**: ``""``
+       | **MongoClient Example**: ``password = "strong password"``
+       | **Connection URI Example**: ``password=strong+password``
+
+For more information about the connection option in this section, see :ref:`pymongo-auth`. 
+
 .. _secondary-reads:
 
 Secondary Reads

source/connect/network-compression.txt

@@ -60,7 +60,7 @@ The following code example shows both options:
       .. code-block:: python
          :emphasize-lines: 2
 
-         client = pymongo.MongoClient("mongodb://<username>:<password>@<hostname@:<port>",
+         client = pymongo.MongoClient("mongodb://<username>:<password>@<hostname>:<port>",
                                       compressors = "snappy,zstd,zlib")
 
    .. tab:: Connection String
@@ -96,7 +96,7 @@ The following code example specifies the ``zlib`` compression algorithm and a va
       .. code-block:: python
          :emphasize-lines: 2-3
 
-         client = pymongo.MongoClient("mongodb://<username>:<password>@<hostname@:<port>",
+         client = pymongo.MongoClient("mongodb://<username>:<password>@<hostname>:<port>",
                                       compressors = "zlib",
                                       zlibCompressionLevel=1)
 

source/connect/tls.txt

@@ -55,7 +55,7 @@ option to ``True``. You can do this in two ways: by passing an argument to the
 
       .. code-block:: python
 
-         client = pymongo.MongoClient("mongodb://<username>:<password>@<hostname@:<port>", tls=True)
+         client = pymongo.MongoClient("mongodb://<username>:<password>@<hostname:<port>", tls=True)
 
    .. tab:: Connection String
       :tabid: connectionstring
@@ -96,7 +96,7 @@ You can do this in two ways: by passing an argument to the
 
       .. code-block:: python
 
-         client = pymongo.MongoClient("mongodb://<username>:<password>@<hostname@:<port>",
+         client = pymongo.MongoClient("mongodb://<username>:<password>@<hostname>:<port>",
                                       tls=True,
                                       tlsCAFile="/path/to/ca.pem")
 
@@ -126,7 +126,7 @@ To use the Online Certificate Status Protocol (OCSP) to validate a server certif
 you must install {+driver-short+} with the ``ocsp`` option, as shown in the following
 example:
 
-.. code-block:: python
+.. code-block:: sh
 
    python -m pip install pymongo[ocsp]
 
@@ -154,7 +154,7 @@ You can do this in two ways: by passing an argument to the
 
       .. code-block:: python
 
-         client = pymongo.MongoClient("mongodb://<username>:<password>@<hostname@:<port>",
+         client = pymongo.MongoClient("mongodb://<username>:<password>@<hostname>:<port>",
                                       tls=True,
                                       tlsDisableOCSPEndpointCheck=True)
 
@@ -188,7 +188,7 @@ You can do this in two ways: by passing an argument to the
 
       .. code-block:: python
 
-         client = pymongo.MongoClient("mongodb://<username>:<password>@<hostname@:<port>",
+         client = pymongo.MongoClient("mongodb://<username>:<password>@<hostname>:<port>",
                                       tls=True,
                                       tlsCRLFile="/path/to/crl.pem")
 
@@ -221,7 +221,7 @@ You can do this in two ways: by passing an argument to the
 
       .. code-block:: python
 
-         client = pymongo.MongoClient("mongodb://<username>:<password>@<hostname@:<port>",
+         client = pymongo.MongoClient("mongodb://<username>:<password>@<hostname>:<port>",
                                       tls=True,
                                       tlsCertificateKeyFile='/path/to/client.pem')
 
@@ -230,7 +230,7 @@ You can do this in two ways: by passing an argument to the
 
       .. code-block:: python
 
-         uri = ("mongodb://<username>:<password>@<hostname@:<port>/?"
+         uri = ("mongodb://<username>:<password>@<hostname:<port>/?"
                 "tls=true"
                 "&tlsCertificateKeyFile=path/to/client.pem")
          client = pymongo.MongoClient(uri)
@@ -262,7 +262,7 @@ You can do this in two ways: by passing an argument to the
 
       .. code-block:: python
 
-         client = pymongo.MongoClient("mongodb://<username>:<password>@<hostname@:<port>",
+         client = pymongo.MongoClient("mongodb://<username>:<password>@<hostname:<port>",
                                 tls=True,
                                 tlsCertificateKeyFile='/path/to/client.pem',
                                 tlsCertificateKeyFilePassword=<passphrase>)
@@ -272,7 +272,7 @@ You can do this in two ways: by passing an argument to the
 
       .. code-block:: python
 
-         uri = ("mongodb://<username>:<password>@<hostname@:<port>/?"
+         uri = ("mongodb://<username>:<password>@<hostname:<port>/?"
                 "tls=true"
                 "&tlsCertificateKeyFile=path/to/client.pem"
                 "&tlsCertificateKeyFilePassword=<passphrase>")
@@ -311,7 +311,7 @@ option to ``True``. You can do this in two ways: by passing an argument to the
 
       .. code-block:: python
 
-         client = pymongo.MongoClient("mongodb://<username>:<password>@<hostname@:<port>",
+         client = pymongo.MongoClient("mongodb://<username>:<password>@<hostname:<port>",
                                       tls=True,
                                       tlsInsecure=True)
 
@@ -320,7 +320,7 @@ option to ``True``. You can do this in two ways: by passing an argument to the
 
       .. code-block:: python
 
-         uri = ("mongodb://<username>:<password>@<hostname@:<port>/?"
+         uri = ("mongodb://<username>:<password>@<hostname>:<port>/?"
                 "tls=true"
                 "&tlsInsecure=true")
          client = pymongo.MongoClient(uri)
@@ -335,7 +335,7 @@ To disable only certificate validation, set the ``tlsAllowInvalidCertificates``
 
       .. code-block:: python
 
-         client = pymongo.MongoClient("mongodb://<username>:<password>@<hostname@:<port>",
+         client = pymongo.MongoClient("mongodb://<username>:<password>@<hostname>:<port>",
                                       tls=True,
                                       tlsAllowInvalidCertificates=True)
 
@@ -344,7 +344,7 @@ To disable only certificate validation, set the ``tlsAllowInvalidCertificates``
 
       .. code-block:: python
 
-         uri = ("mongodb://<username>:<password>@<hostname@:<port>/?"
+         uri = ("mongodb://<username>:<password>@<hostname>:<port>/?"
                 "tls=true"
                 "&tlsAllowInvalidCertificates=true")
          client = pymongo.MongoClient(uri)
@@ -359,7 +359,7 @@ To disable only hostname verification, set the ``tlsAllowInvalidHostnames`` opti
 
       .. code-block:: python
 
-         client = pymongo.MongoClient("mongodb://<username>:<password>@<hostname@:<port>",
+         client = pymongo.MongoClient("mongodb://<username>:<password>@<hostname>:<port>",
                                       tls=True,
                                       tlsAllowInvalidHostnames=True)
 
@@ -368,7 +368,7 @@ To disable only hostname verification, set the ``tlsAllowInvalidHostnames`` opti
 
       .. code-block:: python
 
-         uri = ("mongodb://<username>:<password>@<hostname@:<port>/?"
+         uri = ("mongodb://<username>:<password>@<hostname>:<port>/?"
                 "tls=true"
                 "&tlsAllowInvalidHostnames=true")
          client = pymongo.MongoClient(uri)

source/fundamentals.txt

@@ -11,7 +11,6 @@ Fundamentals
    :titlesonly:
    :maxdepth: 1
 
-   /fundamentals/authentication
    /fundamentals/collations
    /fundamentals/databases-and-collections
    /fundamentals/dates-and-times