Uploaded image for project: 'Core Server'
  1. Core Server
  2. SERVER-69957

Test commands using a faked security token of a tenant and check that the requests cannot access the tenant's data.

    XMLWordPrintableJSON

Details

    • Icon: Task Task
    • Resolution: Won't Fix
    • Icon: Major - P3 Major - P3
    • None
    • None
    • None
    • None
    • Serverless

    Description

      We need add some test cases to validate a faked security token cannot access the tenant's data.

      A faked security token has a valid user name, db and tenant id but the sign is not valid. 

      Attachments

        Activity

          People

            backlog-server-serverless [DO NOT USE] Backlog - Server Serverless (Inactive)
            sophia.tan@mongodb.com Sophia Tan
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: