- Add method to method to verify contract. Call verification method after commands finish running in server_entry_point_common.cpp.
- Can not just do it after priv check since listDatabases (and likely others) check during run(). Ensure sync and async commands are hooked.
- Add AuthorizationContract as a member variable that is reset on AuthorizationSession::startRequest
- Instrument each public member with call to record privilege or access check
- Add private member functions that store access_check/priv after check of testingProctor - split function so it can be inlined for perf with fast and slow paths
Auth C++ Unit Tests in authorization_session_test.cpp
- Positive: Make a correct set of calls on Authorization_Session and verify it passes against a contract
- Negative: Make a incorrect set of calls on Authorization_Session and verify it fails against a contract
|