Loading...

XML

Word

Printable

JSON

Type: Task
Resolution: Done
Priority: Major - P3
Fix Version/s: 3.2.4, 3.3.2
Affects Version/s: None
Component/s: Security
Labels:
- code-and-test

Backwards Compatibility:
Fully Compatible
Backport Completed:

3.2.4
Sprint:
Security F (01/29/16), Security 10 (02/19/16)
Linked BF Score:
0
Confidence Status:
None
Work Order:
3
CAR Domain/s:
None

Aha! Reference:
None
Tracking Level:
None
Risk Status:
None
Exec Notes:
None
Goal Name(s):
None
Goal Link:
None

This is a request for a new built-in role that includes the following:

Ability to read and write data to any database (excluding ability to directly modify system.users, system.roles). i.e. readWriteAnyDatabase
Ability to enable sharding on a database and ability to shard collections.

... but excludes the following:

Ability to create, edit, delete users
Ability to add/remove shard
Ability to modify the replica set configuration (including add/remove member, change priorities, etc.)

Assignee:: Andreas Nilsson (Inactive)
Reporter:: Cailin Nelson (Inactive)
Participants:: Andreas Nilsson, Cailin Nelson, Githook User
Votes:: 0 Vote for this issue
Watchers:: 6 Start watching this issue

Created:: Jan 20 2016 04:09:20 AM UTC
Updated:: Nov 22 2016 06:37:29 PM UTC
Resolved:: Feb 03 2016 08:20:49 PM UTC