Description
Expected
A user privileged to perform the "find" action on a collection should be able to run the "group" command on that collection. Similarly, a user with "find" on a collection should be able to run mapReduce on that collection, so long as inline output is specified.
Actual
The user is unauthorized, with the command returning an error such as the following:
{
|
"errmsg" : "exception: nextSafe(): { $err: \"not authorized for query on roles_commands_1.system.js\", code: 13 }",
|
"code" : 13106,
|
"ok" : 0
|
}
|