-
Type:
Bug
-
Resolution: Works as Designed
-
Priority:
Major - P3
-
None
-
Affects Version/s: None
-
Component/s: Security
-
None
-
ALL
-
None
-
3
-
None
-
None
-
None
-
None
-
None
-
None
-
None
I am running into an issue with the 3.2.12 server
I have a user with 'root' role that is not able to recreate the oplog ( in order to scale up the size of the oplog)
> db.runCommand({ create: "oplog.rs", capped: true, size: 1503238553.0 })
{
"ok" : 0,
"errmsg" : "not authorized on local to execute command { create: \"oplog.rs\", capped: true, size: 1503238553.0 }",
"code" : 13
}
If the user is granted readWrite on the local DB then it starts to work
db.grantRolesToUser("admin", [{role: "readWrite", db: "local"}])
Is this expected? I would expect the 'root' role to be a superset of all the permissions.
- related to
-
-
- Closed
-
-
PHPC-1261 User for replica set auth test environment needs access to "local" database
-
- Closed
-