[SERVER-34127] Add user role action that will allow only indexed queries Created: 26/Mar/18  Updated: 16/Nov/21  Resolved: 21/May/18

Status: Closed
Project: Core Server
Component/s: Querying, Security
Affects Version/s: 3.6.3
Fix Version/s: None

Type: Improvement Priority: Major - P3
Reporter: Tom Grossman Assignee: Asya Kamsky
Resolution: Won't Fix Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Issue Links:
Depends
Related
related to SERVER-15561 I want to apply notablescan to per DB... Backlog
related to SERVER-1143 Allow --notablescan to be specified p... Backlog
Participants:

 Description   

In case of large databases, a query on non-indexed fields can cause major issues.
As an Admin, I don't want to limit myself but I do want to limit non-advanced users.
Some users need to be able to query the DB, but they shouldn't be able to cause the DB to stuck, so they should be allowed to run only indexed queries.

The kind of user role action would be great.



 Comments   
Comment by Asya Kamsky [ 21/May/18 ]

After discussion, we don't think that specific server options should be tied to a user in a way that changes execution of a query as this ticket requests.

There are related tickets that request --notablescan option by DB or by collection, and others which request ability to limit amount of system resources used by operations, perhaps one of those is more appropriate for the use case described here.

 

Comment by Asya Kamsky [ 07/May/18 ]

SERVER-1143 and SERVER-15561 seem related.

 

Comment by Ramon Fernandez Marina [ 06/May/18 ]

Apologies for the long delay in posting a public comment. Sending this ticket to the Query team for consideration.

Generated at Thu Feb 08 04:35:39 UTC 2024 using Jira 9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66.