Proxy Authentication with Oracle Users

user8785925

Is it possible to use the node-oracledb in a Middle Tier for Proxy Authentication with Enterprise Users (or if not are there plans to enhance it so it can be)?  Reading the security guide here https://docs.oracle.com/cd/B19306_01/network.102/b14266/apdvprxy.htm#i1007059

it discusses Using Proxy Authentication with Oracle Users where the user is identified by doing a OCI_ATTR_SET with an attrtype of OCI_ATTR_DISTINGUISHED_NAME and the distinguished name of the user which I assume you can extract from the X.509 certificate.  (Alternatively the X.509 certificate itself, but it says that is to be desupported.)   Looking through the C++ code for the driver and I can't find OCI_ATTR_DISTINGUISHED_NAME ever being used so I'm guessing this isn't supported yet.  Is that correct?

Christopher Jones-Oracle

You can currently use proxy logons like {user: "user1[user2]", password: "user1password", ...}.  You can also set the client id (https://github.com/oracle/node-oracledb/blob/master/doc/api.md#endtoend).

Are you trying to use node-oracledb in an existing environment - can you describe the set up?

user8785925

Sorry for late delay.  It's a setup that uses authentication with Active Directory and Kerberos.