Loading...

XML

Word

Printable

JSON

Type: Task
Resolution: Done
Priority: Major - P3
Fix Version/s: 2.7.2, 3.0
Affects Version/s: None
Component/s: None
Labels:
None

Confidence Status:
None

Aha! Reference:
None
Tracking Level:
None
Risk Status:
None
Exec Notes:
None
Goal Name:
None
Goal Link:
None

Starting with MongoDB 2.7.1 the scope of the localhost exception for authentication was dramatically narrowed. It is no longer possible to call the userInfo command unauthenticated, even when the localhost exception is in effect.

>>> c = pymongo.MongoClient()
>>> try:
...     c.admin.add_user('admin', 'pass', roles=['root'])
... except Exception as exc:
...     print exc.details
... 
{u'code': 13, u'ok': 0.0, u'errmsg': u'not authorized on admin to execute command { usersInfo: "admin" }'}
>>> 
>>> c.admin.command('createUser', 'admin', pwd='pass', roles=['root'])
{u'ok': 1.0}
>>> c.admin.authenticate('admin', 'pass')
True
>>> c.server_info()['version']
u'2.7.2'

A workaround for this issue is to catch the exception and call createUser if the error code is 13 (Unauthorized). Any exception from the createUser call should propagate to the user application.

is depended on by

DRIVERS-169 Work around localhost exception issues in addUser helpers

Closed

Assignee:: Luke Lovett (Inactive)
Reporter:: Bernie Hackett
Votes:: 0 Vote for this issue
Watchers:: 2 Start watching this issue

Created:: Jun 20 2014 08:35:03 PM UTC
Updated:: Apr 07 2015 11:56:28 PM UTC
Resolved:: Jun 30 2014 06:25:31 PM UTC
Confidence Status Last Update:: 30/Jun/14 6:24 PM

Details

Description

Attachments

Issue Links

Activity

People

Dates