Loading...

XML

Word

Printable

JSON

Type: Improvement
Resolution: Unresolved
Priority: Major - P3
Fix Version/s: None
Affects Version/s: 3.2.11
Component/s: Security
Labels:
None

Assigned Teams:

Server Security
Case:
Confidence Status:
None
Work Order:
3

Aha! Reference:
None
Tracking Level:
None
Risk Status:
None
Exec Notes:
None
Goal Name:
None
Goal Link:
None

The unofficial, semi-documented splitVector command has its own privilege action and is included in the clusterAdmin role by default. Unfortunately, this means that splitVector cannot be used in Atlas, since Atlas does not make the clusterAdmin role available to users, and does not allow creation of user-defined roles.

I'd suggest to put splitVector under a different built-in role such as read, readWrite, or dbAdmin.

related to

SERVER-10117 expose splitVector functionality

Closed

mentioned in: Page Loading...; Page Loading...

Assignee:: [DO NOT USE] Backlog - Security Team
Reporter:: Andre Spiegel
Participants:: [DO NOT USE] Backlog - Security Team, Andre Spiegel, Charlie Swanson, Luke Lovett, Spencer Brody, Spencer Jackson
Votes:: 1 Vote for this issue
Watchers:: 14 Start watching this issue

Created:: Dec 08 2016 07:31:23 PM UTC
Updated:: Dec 06 2022 04:10:01 AM UTC

Details

Description

Attachments

Issue Links

Activity

People

Dates