[SERVER-25505] Improve LDAP authz bootstrap role creation error message Created: 09/Aug/16 Updated: 02/Sep/16 Resolved: 17/Aug/16 |
|
| Status: | Closed |
| Project: | Core Server |
| Component/s: | Security |
| Affects Version/s: | 3.3.10 |
| Fix Version/s: | 3.3.12 |
| Type: | Improvement | Priority: | Major - P3 |
| Reporter: | Andreas Nilsson | Assignee: | Andreas Nilsson |
| Resolution: | Done | Votes: | 0 |
| Labels: | None | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original Estimate: | Not Specified | ||
| Backwards Compatibility: | Fully Compatible |
| Sprint: | Security 19 (08/29/16) |
| Participants: |
| Description |
|
When boot-strapping the access control system of a server using LDAP authorization you need to create the initial role. This is allowed by virtual of modifying the localhost exception to allow role creation of the roles retrieved for a user authenticated to the LDAP server. If the role creation fails we should provide an informative error message stating which roles the user is allowed to create. |
| Comments |
| Comment by Githook User [ 19/Aug/16 ] |
|
Author: {u'name': u'Andreas Nilsson', u'email': u'andreas.nilsson@mongodb.com'}Message: |