DOCSP-15817: aws auth (#169)

Chris Cho · schmalliso · commit 91a847dc1e9f · 2022-04-26T12:33:19.000-04:00
* DOCSP-15817: MONGODB-AWS auth
diff --git a/source/kafka-connection-mongodb.txt b/source/kafka-connection-mongodb.txt
@@ -80,8 +80,8 @@ To configure your MongoDB Kafka Source or Sink Connector, specify your
 connection URI in the ``connection.uri`` setting. Refer to the configuration
 guides for more detail:
 
-- :doc:`Sink Configuration Properties </kafka-sink-properties>`
-- (TODO: Fix Broken Link) Source Connector Configuration Properties <source-connector-configuration-properties>
+- :ref:`Sink Connector Configuration Properties <kafka-sink-configuration-properties>`
+- :ref:`Source Connector Configuration Properties <source-configuration-index>`
 
 For more information on how to build your connection URI, navigate
 to the :guilabel:`Authentication` section in the
diff --git a/source/security-and-authentication/mongodb-aws-auth.txt b/source/security-and-authentication/mongodb-aws-auth.txt
@@ -1,5 +1,76 @@
+.. _kafka-mongodb-aws:
+
 ================================
 MongoDB AWS-based Authentication
 ================================
 
-TODO:
+.. default-domain:: mongodb
+
+.. contents:: On this page
+   :local:
+   :backlinks: none
+   :depth: 2
+   :class: singlecol
+
+Overview
+--------
+
+In this guide, you can learn how to authenticate your {+mkc+} with your
+MongoDB replica set using the ``MONGODB-AWS`` authentication mechanism.
+The ``MONGODB-AWS`` authentication mechanism uses your Amazon Web
+Services Identity and Access Management (AWS IAM) credentials to authenticate
+your user.
+
+To learn how to set up your MongoDB replica set in MongoDB Atlas to use
+AWS IAM credentials, see the guide on :atlas:`How to Set Up Unified AWS Access </security/set-up-unified-aws-access/>`.
+
+.. important::
+
+   You need to use {+mkc+} version 1.5 of later to connect to a MongoDB
+   server set up to authenticate using your AWS IAM credentials. AWS IAM
+   credential authentication is available in MongoDB server version 4.4
+   and later.
+
+Connector Connection Settings
+-----------------------------
+
+You can specify your ``MONGODB-AWS`` authentication credentials in your
+connection URI connector property as shown in the following example:
+
+.. code-block:: ini
+
+   connection.uri="mongodb://<AWS access key id>:<AWS secret access key>@<hostname>:<port>/?authSource=<authentication database>&authMechanism=MONGODB-AWS&authMechanismProperties=AWS_SESSION_TOKEN:<AWS session token>"
+
+The preceding example uses the following placeholders which you need to
+replace:
+
+.. list-table::
+   :header-rows: 1
+   :widths: 40 60
+
+   * - Placeholder
+     - Description
+
+   * - **AWS access key id**
+     - Value of your ``AWS_ACCESS_KEY_ID``.
+
+   * - **AWS secret access key**
+     - Value of your ``AWS_SECRET_KEY``.
+
+   * - **hostname**
+     - Network address of your MongoDB server.
+
+   * - **port**
+     - Port number of your MongoDB server.
+
+   * - **authentication database**
+     - MongoDB database that contains your user's authentication data. If
+       you omit the ``authSource`` parameter and placeholder value, the
+       driver uses the default value ``admin``.
+
+   * - **AWS session token**
+     - | Value of your ``AWS_SESSION_TOKEN``. If you do not need to specify an
+         AWS session token, omit the ``authMechanismProperties`` parameter
+         and placeholder value.
+       | *Optional*
+
