Uploaded image for project: 'Core Server'
  1. Core Server
  2. SERVER-39161

User management commands should ensure the created user is usable

    XMLWordPrintableJSON

Details

    • Icon: New Feature New Feature
    • Resolution: Unresolved
    • Icon: Major - P3 Major - P3
    • None
    • None
    • Admin
    • None
    • Server Security

    Description

      If the role graph produced by usersInfo with the showPrivileges option exceeds the BSON document size limit, an exception is thrown.

      Since usersInfo is used in the authentication process, this prevents the user from authenticating.

      Currently the user and role management commands do not validate that the modifications made actually result is usable users. The worst case scenario is a userAdmin could lock themselves out.

      There should be some manner of warning or error when this occurs.

      Attachments

        Activity

          People

            backlog-server-security Backlog - Security Team
            joe.caswell@mongodb.com Joe Caswell
            Votes:
            0 Vote for this issue
            Watchers:
            5 Start watching this issue

            Dates

              Created:
              Updated: