-
Notifications
You must be signed in to change notification settings - Fork 5.9k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
default_authentication_plugin
is not compatable with MySQL's
#54138
Comments
In MySQL the
Minor nit: Both TiDB and MySQL never use SSL. Both use TLS. But this is a common mixup... Best to either use "TLS" or at least "SSL/TLS".
I don't see why I think the most secure way is to make Note that in TiDB |
Nowadays,
default_authentication_plugin
in tidb only affects the connection between servers and clients. It cannot control the default auth plugin when creating users without explicit auth plugin as in MySQL. Sincecaching_sha2_password
is safer than the defaultmysql_native_password
, it is better for tidb to support this compatibility with MySQL.However, since currently using the
caching_sha2_password
in TiDB requires a SSL connection, it is not suitable for TiDB to make it default authentication plugin after bootstrapping a new TiDB cluster. It is better to make it default after implementing completecaching_sha2_password
on TiDB.The text was updated successfully, but these errors were encountered: