Closed hhorak closed 4 years ago
@hhorak @phracek so is this sufficient for getting the cakephp templates to work? I think it is based on what I'm seeing, but don't feel confident enough to assume this.
@gabemontero I have checked CentOS stream docker pull centos/mysql-80-centos7:latest, released 16 hours ago, and default_authentication_plugin
is already present here based on this PR.
docker pull centos/mysql-80-centos7:latest
docker run --rm -it centos/mysql-80-centos7 bash
cat /usr/share/container-scripts/mysql/20-default-authentication-plugin.cnf
MySQL 8.0 introduced 'caching_sha2_password' as its default authentication plugin. It is faster and provides better security then the previous default authentication plugin. However, not all software implements this algorithm, and client applications might report issue like "The server requested authentication method".
An example of such error: https://bugzilla.redhat.com/show_bug.cgi?id=1793116
Solution:
The plugin can be changed by setting
MYSQL_DEFAULT_AUTHENTICATION_PLUGIN
environment variable, which accepts valuescaching_sha2_password
(the default one) ormysql_native_password
. To change the behaviour back to the same behavior as MySQL 5.7 (for client applications that do not supportcaching_sha2_password
), set theMYSQL_DEFAULT_AUTHENTICATION_PLUGIN=mysql_native_password
.We keep
caching_sha2_password
as default because it has been default for long time and we should not just change the config default. Since we didn't have many reports, it looks like users don't have that many problems with the new authentication plugin. We should still offer a way to change it though.