Uploaded image for project: 'Core Server'
  1. Core Server
  2. SERVER-55049

access control: backup/restore roles should work with time-series collections

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major - P3
    • Resolution: Duplicate
    • Affects Version/s: None
    • Fix Version/s: None
    • Component/s: Security
    • Labels:
      None
    • Sprint:
      Execution Team 2021-05-03, Execution Team 2021-05-17, Execution Team 2021-05-31

      Description

      These roles should give enough permissions to backup and restore time-series collections including any secondary indexes defined on them.

      The relevant privileges for the backup and restore roles are defined in the code here:

      The time-series collection is considered a normal resource in the access control system. However, this does not apply to the buckets collection because it resides in the system.buckets namespace.

      The AuthorizationSessionImpl::buildResourceSearchList function is responsible for checking whether an action is allowed to proceed on a resource.

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              michael.gargiulo Michael Gargiulo
              Reporter:
              geert.bosch Geert Bosch
              Participants:
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved: