[SERVER-54022] Simplify AuthorizationSession Created: 25/Jan/21  Updated: 29/Oct/23  Resolved: 09/Feb/21

Status: Closed
Project: Core Server
Component/s: None
Affects Version/s: None
Fix Version/s: 4.9.0

Type: Task Priority: Major - P3
Reporter: Mark Benvenuto Assignee: Mark Benvenuto
Resolution: Fixed Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Backwards Compatibility: Fully Compatible
Sprint: Security 2021-02-08, Security 2021-02-22
Participants:

 Description   

AuthorizationSession is the class responsible for maintaining information about the current authenticated user, performing access checks, and defining the access check rules for a large number of commands. The access control rules for the commands do not need to be contained in this class and can be separated out. This is motivated by the goal of reducing the responsibilities of the class and reducing the coupling between classes.

The command access checks will be moved to to a new set of files for commands that share access checks across code (i.e. find, insert, delete, etc). While the access checks that are not shared across commands will be inlined into their respective commands (i.e. createRole, revokeRole, etc).



 Comments   
Comment by Githook User [ 09/Feb/21 ]

Author:

{'name': 'Mark Benvenuto', 'email': 'mark.benvenuto@mongodb.com', 'username': 'markbenvenuto'}

Message: SERVER-54022 Simplify AuthorizationSession
Branch: master
https://github.com/mongodb/mongo/commit/93bddb471583e84afc412b68c7e9c06871d42c43

Comment by Githook User [ 09/Feb/21 ]

Author:

{'name': 'Mark Benvenuto', 'email': 'mark.benvenuto@mongodb.com', 'username': 'markbenvenuto'}

Message: SERVER-54022 Simplify AuthorizationSession
Branch: master
https://github.com/10gen/mongo-enterprise-modules/commit/dea17de2a8615a15d0aa51561e4ba69163f583d4

Generated at Thu Feb 08 05:32:27 UTC 2024 using Jira 9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66.