Uploaded image for project: 'Core Server'
  1. Core Server
  2. SERVER-39161

User management commands should ensure the created user is usable

XMLWordPrintableJSON

    • Type: Icon: New Feature New Feature
    • Resolution: Unresolved
    • Priority: Icon: Major - P3 Major - P3
    • None
    • Affects Version/s: None
    • Component/s: Admin
    • Labels:
      None
    • Server Security

      If the role graph produced by usersInfo with the showPrivileges option exceeds the BSON document size limit, an exception is thrown.

      Since usersInfo is used in the authentication process, this prevents the user from authenticating.

      Currently the user and role management commands do not validate that the modifications made actually result is usable users. The worst case scenario is a userAdmin could lock themselves out.

      There should be some manner of warning or error when this occurs.

        1. bigusertest.js
          2 kB

            Assignee:
            backlog-server-security [DO NOT USE] Backlog - Security Team
            Reporter:
            joe.caswell@mongodb.com Joe Caswell
            Votes:
            0 Vote for this issue
            Watchers:
            5 Start watching this issue

              Created:
              Updated: