[SERVER-51859] rolesInfo command returns a result without `inheritedPrivileges` and `isBuiltin` fields for mongo version 4.9+ Created: 28/Oct/20 Updated: 29/Oct/23 Resolved: 10/Nov/20 |
|
| Status: | Closed |
| Project: | Core Server |
| Component/s: | Security |
| Affects Version/s: | 4.9 Required |
| Fix Version/s: | 4.9.0 |
| Type: | Bug | Priority: | Blocker - P1 |
| Reporter: | Tanay Abhra | Assignee: | Sara Golemon |
| Resolution: | Fixed | Votes: | 0 |
| Labels: | None | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original Estimate: | Not Specified | ||
| Attachments: |
|
||||||||||||
| Issue Links: |
|
||||||||||||
| Backwards Compatibility: | Minor Change | ||||||||||||
| Operating System: | ALL | ||||||||||||
| Sprint: | Security 2020-11-16 | ||||||||||||
| Participants: | |||||||||||||
| Description |
|
This ticket is related to https://jira.mongodb.org/browse/SERVER-51651. We are going to run atlas proxy with mongodb 4.9+ version in the future. While trying to run the test harness with a new mongod in dev, I found a breaking change. We depend on the `rolesInfo` command to load the roles we are interested in. With the current command params, 4.9 doesn’t populate `inheritedPrivileges` which we use and doesn’t include the `isBuiltin` field. Binaries we were using for testing: Code to reproduce the bug:
The output for 4.4 and 4.9+ is attached in the comments for comparison.
|
| Comments |
| Comment by Githook User [ 10/Nov/20 ] |
|
Author: {'name': 'Sara Golemon', 'email': 'sara.golemon@mongodb.com', 'username': 'sgolemon'}Message: |