-
Type: Improvement
-
Resolution: Won't Fix
-
Priority: Minor - P4
-
None
-
Affects Version/s: 2.0.4
-
Component/s: Security
From SERVER-2610, it may be desirable to allow non-admin users to view in-progress operations. One use case might involve shared hosting.
We could filter out unauthenticated databases in inProgCmd(). Might also want to audit existing operations to ensure we exclude all sensitive ops (e.g. query/update system.users), especially for read-only users.