Loading...

XML

Word

Printable

JSON

Type: New Feature
Resolution: Unresolved
Priority: Major - P3
Fix Version/s: None
Affects Version/s: None
Component/s: Security
Labels:
- security

Assigned Teams:

Server Security
Case:
Confidence Status:
None
Work Order:
3

Aha! Reference:
None
Tracking Level:
None
Risk Status:
None
Exec Notes:
None
Goal Name:
None
Goal Link:
None

Resource document within Collection-Level Access Control currently supports the following.
1. Explicit values :

inventory collection in products database


{ db: "products", collection: "inventory" }

2. Empty strings that includes the entire scope :

all collections in products database


{ db: "products", collection: "" }

Request is to have a pattern matching on either db or collection fileds, this way permissions can be granted based on the matching pattern rather then explicit literals.

3. regexp example

Collections starting with "inve" in products database


{ db: "products", collection: "^inve*" }

duplicates

SERVER-48632 Use wildcard collections in user role privileges

Closed

is duplicated by

SERVER-78575 Use wildcard databases in user role privileges (like collections)

Closed

related to

SERVER-13696 Allow revoke/deny role permissions

Open

Assignee:: [DO NOT USE] Backlog - Security Team

Reporter:: Pavel Duchovny

Participants:: [DO NOT USE] Backlog - Security Team, Pavel Duchovny, Salman Baset, Shanjeef Satchithanantham, Spencer Brown, Teddy poujol

Votes:: 23 Vote for this issue

Watchers:: 40 Start watching this issue

Created:: Mar 03 2016 08:21:19 PM UTC

Updated:: Mar 22 2024 09:55:26 AM UTC

Details

Description

Attachments

Issue Links

Activity

People

Dates