[SERVER-9514] System-defined roles - MongoDB Jira

XML

Word

Printable

JSON

Details

Type: Task
Status: Closed
Priority: Major - P3
Resolution: Done
Affects Version/s: None
Fix Version/s: 2.5.4
Component/s: Security
Labels:
None

Description

In the context of supporting user-defined roles (~~SERVER-8580~~), we should review and as needed extend the existing system-defined roles to ensure that they support the most common access control use cases.

System defined roles will automatically be created for each database, and it will not be possible to rename, replace, update, modify or delete them. They should be useful for basic single- and multi-tenant scenarios.

Attachments

Issue Links

is depended on by

SERVER-11027 not authorized to execute repairDatabase for user with role clusterAdmin

Closed

is related to

SERVER-9815 Introduce a role for monitoring cluster members

Closed

SERVER-10750 Minimum roles required to run mongorestore with authentication

Closed

related to

SERVER-11424 collStats and dbStats should work for a user with the clusterMonitor role

Closed

SERVER-10493 Update tools to support backing up and restoring user data properly with new user format 2.6

Closed

SERVER-9060 Introduce a built-in role for taking backups of nodes

Closed

(1 related to)

Activity

People

Assignee:: Spencer Brody (Inactive)

Reporter:: Andy Schwerin

Participants:: Andreas Nilsson, Andy Schwerin, auto, Githook User, Ian Daniel, Spencer Brody

Votes:: 0 Vote for this issue

Watchers:: 9 Start watching this issue

Dates

Created:: Apr 30 2013 03:10:12 PM UTC

Updated:: Aug 02 2018 09:24:19 PM UTC

Resolved:: Oct 30 2013 10:17:58 PM UTC