Description
Starting with MongoDB 2.7.1 the scope of the localhost exception for authentication was dramatically narrowed. It is no longer possible to call the userInfo command unauthenticated, even when the localhost exception is in effect.
>>> c = pymongo.MongoClient()
|
>>> try:
|
... c.admin.add_user('admin', 'pass', roles=['root'])
|
... except Exception as exc:
|
... print exc.details
|
...
|
{u'code': 13, u'ok': 0.0, u'errmsg': u'not authorized on admin to execute command { usersInfo: "admin" }'}
|
>>>
|
>>> c.admin.command('createUser', 'admin', pwd='pass', roles=['root'])
|
{u'ok': 1.0}
|
>>> c.admin.authenticate('admin', 'pass')
|
True
|
>>> c.server_info()['version']
|
u'2.7.2'
|
A workaround for this issue is to catch the exception and call createUser if the error code is 13 (Unauthorized). Any exception from the createUser call should propagate to the user application.
Attachments
Issue Links
- is depended on by
-
DRIVERS-169 Work around localhost exception issues in addUser helpers
-
- Closed
-