Enforce Authorization Checks in ExecCommandDatabase::run()

XMLWordPrintableJSON

    • Type: Task
    • Resolution: Fixed
    • Priority: Major - P3
    • 8.3.0-rc0
    • Affects Version/s: None
    • Component/s: None
    • None
    • Server Security
    • Fully Compatible
    • Server Security 2025-07-20, Server Security 2025-08-01, Server Security 2025-08-15, Server Security 2025-08-29, Server Security 2025-09-12, Server Security 2025-09-26, Server Security 2025-10-10
    • 200
    • None
    • None
    • None
    • None
    • None
    • None
    • None

      Add logic to service_entry_point_shard_role.cpp within ExecCommandDatabase::run() to assert that if a command's requiresAuthzChecks() is true, then its AuthorizationContract reports isPermissionChecked() as true after execution.

       

      List of overridden commands

            Assignee:
            Adrian Gonzalez Montemayor
            Reporter:
            Adrian Gonzalez Montemayor
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

              Created:
              Updated:
              Resolved: