[DOCS-14128] [MEKO] Clarify that you can assign a user to only one MongoDB resource Created: 14/Jan/21  Updated: 17/Dec/21  Resolved: 13/Dec/21

Status: Closed
Project: Documentation
Component/s: Kubernetes Operator
Affects Version/s: None
Fix Version/s: None

Type: Improvement Priority: Minor - P4
Reporter: Albert Wong (Inactive) Assignee: James Sanchez (Inactive)
Resolution: Done Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Participants:
Days since reply: 2 years, 8 weeks, 2 days ago
Epic Link: DOCSP-3291
Story Points: 1

 Description   

Description

Per https://docs.mongodb.com/kubernetes-operator/stable/tutorial/manage-database-users-scram/#k8s-manage-db-users-scram, it implies that only one user (awong) can belong in a single MongoDB resource (my-replica-set4).    

 

apiVersion: mongodb.com/v1
kind: MongoDBUser
metadata:
name: mms-scram-awong
spec:
passwordSecretKeyRef:
name: awong-password

  1. Match to metadata.name of the User Secret
    key: password
    username: "awong"
    db: "admin" #
    mongodbResourceRef:
    name: "my-replica-set4"
  2. Match to MongoDB resource using authenticaiton
    roles:
  • db: admin
    name: clusterAdmin
  • db: admin
    name: dbAdminAnyDatabase
  • db: admin
    name: userAdminAnyDatabase
  • db: admin
    name: readWriteAnyDatabase

 

I tried to assign this user to my-replica-set4 and my-replica-set5 and it wouldn't let me.   Is it possible? If so, can we update the instructions?

Scope of changes

Impact to Other Docs

MVP (Work and Date)

Resources (Scope or Design Docs, Invision, etc.)



 Comments   
Comment by John Williams [ 13/Dec/21 ]

merged: https://github.com/10gen/docs-k8s-operator/pull/769

Comment by James Sanchez (Inactive) [ 19/Nov/21 ]

albert.wong could you review the PR https://github.com/10gen/docs-k8s-operator/pull/769 for this one? In the PR, you'll see some questions that the internal reviewer brought up that I could use SME feedback on. LMK if if you're a good reviewer for this

Comment by Melissa Mahoney [ 25/Jan/21 ]

Spoke with andrey.belik . You can't assign a user to multiple MongoDB resources. We could add a note to make this explicit.

Comment by John Williams [ 20/Jan/21 ]

andrey.belik is this a use case that the enterprise operator should support? Can you advise if we should update the docs to clarify?

Generated at Thu Feb 08 08:09:34 UTC 2024 using Jira 9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66.