[SERVER-69348] Commands must declare empty auth checks to be universally callable Created: 31/Aug/22  Updated: 24/Jan/24  Resolved: 14/Sep/22

Status: Closed
Project: Core Server
Component/s: None
Affects Version/s: 6.0.0, 4.4.16, 5.0.11
Fix Version/s: 6.1.1, 4.4.18, 4.2.24, 5.0.14, 6.0.3, 6.2.0-rc0

Type: Bug Priority: Major - P3
Reporter: Spencer Jackson Assignee: Spencer Jackson
Resolution: Fixed Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Issue Links:
Backports
Depends
is depended on by COMPASS-6128 Investigate changes in SERVER-69348: ... Closed
Documented
is documented by DOCS-15630 Investigate changes in SERVER-69348: ... Closed
Problem/Incident
Related
related to SERVER-64001 Create a fuzzer with auth enabled Backlog
related to SERVER-69737 Replace fassert 16940 with tassert Closed
Backwards Compatibility: Major Change
Operating System: ALL
Backport Requested:
v6.1, v6.0, v5.0, v4.4, v4.2
Sprint: Security 2022-09-05, Security 2022-09-19
Participants:

 Description   

A command can declare an auth check by overriding any of the following:

  • checkAuthForOperation
  • checkAuthForCommand
  • addRequiredPrivileges
  • checkAuthorization

To be callable, commands must define one of these methods.



 Comments   
Comment by Githook User [ 12/Oct/22 ]

Author:

{'name': 'Spencer Jackson', 'email': 'spencer.jackson@mongodb.com', 'username': 'spencerjackson'}

Message: SERVER-69348 Remove repairDatabase command

(cherry picked from commit fa534d676f5f673a6a7f3ea656f650ff108b7f92)
(cherry picked from commit 49297c3cb0cdae29b0c1da41c6ea802731090a24)
(cherry picked from commit 1e2dcf8746047e0e194170a22bc1a4a82e1c9b8f)
Branch: v4.2
https://github.com/mongodb/mongo/commit/37f2a3b703361f68d3edf9036fbf0233c95d6ca3

Comment by Githook User [ 12/Oct/22 ]

Author:

{'name': 'Spencer Jackson', 'email': 'spencer.jackson@mongodb.com', 'username': 'spencerjackson'}

Message: SERVER-69348 Remove repairDatabase command

(cherry picked from commit fa534d676f5f673a6a7f3ea656f650ff108b7f92)
(cherry picked from commit 49297c3cb0cdae29b0c1da41c6ea802731090a24)
Branch: v4.4
https://github.com/mongodb/mongo/commit/b99588b40e4f5c44ed976438f58ce2249626204c

Comment by Githook User [ 07/Oct/22 ]

Author:

{'name': 'Spencer Jackson', 'email': 'spencer.jackson@mongodb.com', 'username': 'spencerjackson'}

Message: SERVER-69348 Remove repairDatabase command

(cherry picked from commit fa534d676f5f673a6a7f3ea656f650ff108b7f92)
(cherry picked from commit 49297c3cb0cdae29b0c1da41c6ea802731090a24)
Branch: v5.0
https://github.com/mongodb/mongo/commit/ea65e3babfd1341b504b10cf767f6688fc3b45b3

Comment by Githook User [ 05/Oct/22 ]

Author:

{'name': 'Spencer Jackson', 'email': 'spencer.jackson@mongodb.com', 'username': 'spencerjackson'}

Message: SERVER-69348 Remove repairDatabase command

(cherry picked from commit fa534d676f5f673a6a7f3ea656f650ff108b7f92)
Branch: v6.0
https://github.com/mongodb/mongo/commit/49297c3cb0cdae29b0c1da41c6ea802731090a24

Comment by Githook User [ 05/Oct/22 ]

Author:

{'name': 'Spencer Jackson', 'email': 'spencer.jackson@mongodb.com', 'username': 'spencerjackson'}

Message: SERVER-69348 Remove repairDatabase command

(cherry picked from commit fa534d676f5f673a6a7f3ea656f650ff108b7f92)
Branch: v6.1
https://github.com/mongodb/mongo/commit/ac1111d677d6fd5fd662bd13bc6f356a7bfa7356

Comment by Githook User [ 13/Sep/22 ]

Author:

{'name': 'Spencer Jackson', 'email': 'spencer.jackson@mongodb.com', 'username': 'spencerjackson'}

Message: SERVER-69348 Remove repairDatabase command
Branch: master
https://github.com/mongodb/mongo/commit/fa534d676f5f673a6a7f3ea656f650ff108b7f92

Generated at Thu Feb 08 06:13:14 UTC 2024 using Jira 9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66.