[DOCS-10023] Docs for SERVER-9609: Ensure users can only call getMore on cursors they created Created: 22/Mar/17  Updated: 06/Sep/17  Resolved: 06/Sep/17

Status: Closed
Project: Documentation
Component/s: Server
Affects Version/s: None
Fix Version/s: mongodb-3.6, 3.5.5

Type: Task Priority: Major - P3
Reporter: Emily Hall Assignee: Pavithra Vetriselvan
Resolution: Done Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Issue Links:
Documented
documents SERVER-9609 Ensure users can only call getMore on... Closed
Participants:
Days since reply: 6 years, 23 weeks ago
Epic Link: DOCS: 3.6 Server

 Description   

Documentation Request Summary:

If authentication is turned on, then users may only issue getMores against cursors they created.

Engineering Ticket Description:

A ClientCursor should be associated with the set of users that were authenticated when it was created. A getMore should only succeed if the intersection of currently authenticated users and the set of users associated with the ClientCursor is nonempty (or the set of users associated with the ClientCursor is empty).



 Comments   
Comment by Githook User [ 06/Sep/17 ]

Author:

{'name': 'Pavithra Vetriselvan', 'email': 'pavi@MacBook-Pro-77.local'}

Message: DOCS-10023 ensure users can only call getMore on users they created
Branch: master
https://github.com/mongodb/docs/commit/686712983600fd62706cddb623e7d88c32e293fe

Comment by Githook User [ 06/Sep/17 ]

Author:

{'name': 'Pavithra Vetriselvan', 'email': 'pavi@MacBook-Pro-77.local'}

Message: DOCS-10023 clearly state that users can only call getMore on cursors they created.
Branch: master
https://github.com/mongodb/docs/commit/a196a2b9d5cb6afb1f25552e66f996e307d6e129

Generated at Thu Feb 08 07:59:39 UTC 2024 using Jira 9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66.