Uploaded image for project: 'Core Server'
  1. Core Server
  2. SERVER-10243

Let administrators mark certain users to be pinned to the user cache

    • Type: Icon: Improvement Improvement
    • Resolution: Unresolved
    • Priority: Icon: Major - P3 Major - P3
    • None
    • Affects Version/s: None
    • Component/s: Concurrency, Security
    • None
    • Server Security
    • Fully Compatible

      With SERVER-9518, users stored in a server's user cache can be authenticated without taking a database lock or performing network operations. By marking certain users as "pinned" to the cache, we can guarantee that even when the database locks are wedged those users can still log into the system.

      Proposal: Add an optional field, "critical", which when true marks the user as one that should be pinned to the user cache at startup.

      Alternative: Define a system role, possession of which marks the user as one that should be pinned to the user cache at startup. This approach implies that you would have to resolve indirect roles for users when choosing which ones to pin.

            Assignee:
            backlog-server-security [DO NOT USE] Backlog - Security Team
            Reporter:
            spencer@mongodb.com Spencer Brody (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

              Created:
              Updated: