[SERVER-57648] When converting a single instance to arbiter warn if there are users on admin.system.users Created: 11/Jun/21 Updated: 06/Dec/22 |
|
| Status: | Backlog |
| Project: | Core Server |
| Component/s: | None |
| Affects Version/s: | 4.2.13 |
| Fix Version/s: | None |
| Type: | Improvement | Priority: | Minor - P4 |
| Reporter: | Adamo Tonete (Inactive) | Assignee: | Backlog - Security Team |
| Resolution: | Unresolved | Votes: | 0 |
| Labels: | former-quick-wins | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original Estimate: | Not Specified | ||
| Assigned Teams: |
Server Security
|
| Participants: | |
| Case: | (copied to CRM) |
| Description |
|
When converting a single instance previously configured with users into an arbiter we should warn the user that the target instance does contain users. This behaviour can mislead the user as the arbiters should not hold any data and therefore should not be able to perform authorization. Also, those users are not in sync with the rest of the cluster. Here are the steps to reproduce the issue: Bash:
At the end of the process we are able to login on arbiter with the user admin_arb which is not expected.
|