Loading...

XML

Word

Printable

JSON

Type: Task
Resolution: Fixed
Priority: Major - P3
Fix Version/s: 8.3.0-rc0
Affects Version/s: None
Component/s: None
Labels:
None

Assigned Teams:

Server Security
Backwards Compatibility:
Fully Compatible
Sprint:
Server Security 2025-07-04, Server Security 2025-07-20, Server Security 2025-08-01
CAR Domain/s:
None

Aha! Reference:
None
Tracking Level:
None
Risk Status:
None
Exec Notes:
None
Goal Name(s):
None
Goal Link:
None

Modify authorization_checks.cpp within getPrivilegesForAggregate to check each LiteParsedDocumentSource. If requiresAuthChecks() is true for a stage but its requiredPrivileges() returns an empty vector, return a Status(ErrorCodes::MissingAuthCheck).

Make sure to encapsulate this check with the feature flag created. That is to say, only the check should happen when the gFeatureFlagMandatoryAuthChecks featureflag is on.

fixes

SERVER-106610 Review and Opt-Out Specific Aggregation Stages

Closed

Assignee:: Kat Cheng (Inactive)
Reporter:: Adrian Gonzalez Montemayor
Participants:: Adrian Gonzalez Montemayor, Githook User, Kat Cheng
Votes:: 0 Vote for this issue
Watchers:: 3 Start watching this issue

Created:: Jun 23 2025 09:52:35 PM UTC
Updated:: Jul 30 2025 07:27:34 PM UTC
Resolved:: Jul 30 2025 07:27:08 PM UTC

Details

Description

Attachments

Issue Links

Activity

People

Dates