<!-- 
RSS generated by JIRA (9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66) at Thu Feb 08 03:25:30 UTC 2024

It is possible to restrict the fields that are returned in this document by specifying the 'field' parameter in your request.
For example, to request only the issue key and summary append 'field=key&field=summary' to the URL of your request.
-->
<rss version="0.92" >
<channel>
    <title>MongoDB Jira</title>
    <link>https://jira.mongodb.org</link>
    <description>This file is an XML representation of an issue</description>
    <language>en-us</language>    <build-info>
        <version>9.7.1</version>
        <build-number>970001</build-number>
        <build-date>13-04-2023</build-date>
    </build-info>


<item>
            <title>[SERVER-11331] auth error with createRole command</title>
                <link>https://jira.mongodb.org/browse/SERVER-11331</link>
                <project id="10000" key="SERVER">Core Server</project>
                    <description>&lt;p&gt;createRole (for empty user-defined roles) can be run by any user, and can also be run when not logged in at all.  &lt;/p&gt;

&lt;p&gt;&amp;gt; db.runCommand(&lt;/p&gt;
{ createRole: &quot;sam&quot;, privileges: [], roles: [] }
&lt;p&gt;)&lt;/p&gt;
{ &quot;ok&quot; : 1 }

&lt;p&gt;When the role we are trying to create contains any linked roles or privileges, the command fails with an auth error:&lt;/p&gt;

&lt;p&gt;&amp;gt; db.runCommand(&lt;/p&gt;
{ createRole: &quot;dave&quot;, privileges: [], roles: [ &quot;sam&quot; ] }
&lt;p&gt;)&lt;br/&gt;
{&lt;br/&gt;
	&quot;ok&quot; : 0,&lt;br/&gt;
	&quot;errmsg&quot; : &quot;not authorized on test to execute command &lt;/p&gt;
{ createRole: \&quot;dave\&quot;, privileges: [], roles: [ \&quot;sam\&quot; ] }
&lt;p&gt;&quot;,&lt;br/&gt;
	&quot;code&quot; : 13&lt;br/&gt;
}&lt;/p&gt;

&lt;p&gt;&amp;gt; db.runCommand(&lt;/p&gt;
{ createRole: &quot;amalia&quot;, privileges: [], roles: [ &quot;read&quot; ] }
&lt;p&gt;)&lt;br/&gt;
{&lt;br/&gt;
	&quot;ok&quot; : 0,&lt;br/&gt;
	&quot;errmsg&quot; : &quot;not authorized on test to execute command &lt;/p&gt;
{ createRole: \&quot;amalia\&quot;, privileges: [], roles: [ \&quot;read\&quot; ] }
&lt;p&gt;&quot;,&lt;br/&gt;
	&quot;code&quot; : 13&lt;br/&gt;
}&lt;/p&gt;

&lt;p&gt;&amp;gt; var priv = { resource: &lt;/p&gt;
{ db: &quot;test&quot;, collection: &quot;&quot; }
&lt;p&gt;, actions: [ &quot;find&quot; ] }&lt;br/&gt;
&amp;gt; db.runCommand(&lt;/p&gt;
{ createRole: &quot;jeremy&quot;, privileges: [ priv ], roles: [] }
&lt;p&gt;)&lt;br/&gt;
{&lt;br/&gt;
	&quot;ok&quot; : 0,&lt;br/&gt;
	&quot;errmsg&quot; : &quot;not authorized on test to execute command { createRole: \&quot;jeremy\&quot;, privileges: [ { resource: &lt;/p&gt;
{ db: \&quot;test\&quot;, collection: \&quot;\&quot; }
&lt;p&gt;, actions: [ \&quot;find\&quot; ] } ], roles: [] }&quot;,&lt;br/&gt;
	&quot;code&quot; : 13&lt;br/&gt;
}&lt;/p&gt;</description>
                <environment>mac</environment>
        <key id="95428">SERVER-11331</key>
            <summary>auth error with createRole command</summary>
                <type id="1" iconUrl="https://jira.mongodb.org/secure/viewavatar?size=xsmall&amp;avatarId=14703&amp;avatarType=issuetype">Bug</type>
                                            <priority id="3" iconUrl="https://jira.mongodb.org/images/icons/priorities/major.svg">Major - P3</priority>
                        <status id="6" iconUrl="https://jira.mongodb.org/images/icons/statuses/closed.png" description="The issue is considered finished, the resolution is correct. Issues which are closed can be reopened.">Closed</status>
                    <statusCategory id="3" key="done" colorName="success"/>
                                    <resolution id="9">Done</resolution>
                                        <assignee username="spencer@mongodb.com">Spencer Brody</assignee>
                                    <reporter username="samantha.ritter@mongodb.com">Samantha Ritter</reporter>
                        <labels>
                            <label>26qa</label>
                    </labels>
                <created>Wed, 23 Oct 2013 15:42:44 +0000</created>
                <updated>Mon, 11 Jul 2016 17:38:12 +0000</updated>
                            <resolved>Wed, 23 Oct 2013 21:18:49 +0000</resolved>
                                    <version>2.5.3</version>
                                    <fixVersion>2.5.4</fixVersion>
                                    <component>Security</component>
                                        <votes>0</votes>
                                    <watches>4</watches>
                                                                                                                <comments>
                            <comment id="445663" author="auto" created="Wed, 23 Oct 2013 21:18:20 +0000"  >&lt;p&gt;Author:&lt;/p&gt;
{u&apos;username&apos;: u&apos;stbrody&apos;, u&apos;name&apos;: u&apos;Spencer T Brody&apos;, u&apos;email&apos;: u&apos;spencer@10gen.com&apos;}
&lt;p&gt;Message: &lt;a href=&quot;https://jira.mongodb.org/browse/SERVER-11331&quot; title=&quot;auth error with createRole command&quot; class=&quot;issue-link&quot; data-issue-key=&quot;SERVER-11331&quot;&gt;&lt;del&gt;SERVER-11331&lt;/del&gt;&lt;/a&gt; Fix access control check for createRole&lt;br/&gt;
Branch: master&lt;br/&gt;
&lt;a href=&quot;https://github.com/mongodb/mongo/commit/c9b501f8776655806fe11b2649a7c1b9a14e503d&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/mongodb/mongo/commit/c9b501f8776655806fe11b2649a7c1b9a14e503d&lt;/a&gt;&lt;/p&gt;</comment>
                    </comments>
                <issuelinks>
                            <issuelinktype id="10012">
                    <name>Related</name>
                                                                <inwardlinks description="is related to">
                                                        </inwardlinks>
                                    </issuelinktype>
                    </issuelinks>
                <attachments>
                    </attachments>
                <subtasks>
                    </subtasks>
                <customfields>
                                                <customfield id="customfield_10050" key="com.atlassian.jira.toolkit:comments">
                        <customfieldname># Replies</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>1.0</customfieldvalue>
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                <customfield id="customfield_10055" key="com.atlassian.jira.ext.charting:firstresponsedate">
                        <customfieldname>Date of 1st Reply</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>Wed, 23 Oct 2013 20:16:58 +0000</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_10052" key="com.atlassian.jira.toolkit:dayslastcommented">
                        <customfieldname>Days since reply</customfieldname>
                        <customfieldvalues>
                                        10 years, 17 weeks ago
    
                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_18254" key="com.onresolve.jira.groovy.groovyrunner:scripted-field">
                        <customfieldname>Dependencies</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue><![CDATA[]]></customfieldvalue>


                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_15850" key="com.atlassian.jira.plugins.jira-development-integration-plugin:devsummary">
                        <customfieldname>Development</customfieldname>
                        <customfieldvalues>
                            
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    <customfield id="customfield_10057" key="com.atlassian.jira.toolkit:lastusercommented">
                        <customfieldname>Last comment by Customer</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>true</customfieldvalue>
                        </customfieldvalues>
                    </customfield>
                                                                                            <customfield id="customfield_10056" key="com.atlassian.jira.toolkit:lastupdaterorcommenter">
                        <customfieldname>Last commenter</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>ramon.fernandez@mongodb.com</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_11151" key="com.atlassian.jira.toolkit:LastCommentDate">
                        <customfieldname>Last public comment date</customfieldname>
                        <customfieldvalues>
                            10 years, 17 weeks ago
                        </customfieldvalues>
                    </customfield>
                                                                                                                        <customfield id="customfield_10000" key="com.atlassian.jira.plugin.system.customfieldtypes:radiobuttons">
                        <customfieldname>Old_Backport</customfieldname>
                        <customfieldvalues>
                                <customfieldvalue key="10000"><![CDATA[No]]></customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_10032" key="com.atlassian.jira.plugin.system.customfieldtypes:select">
                        <customfieldname>Operating System</customfieldname>
                        <customfieldvalues>
                                <customfieldvalue key="10026"><![CDATA[ALL]]></customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                <customfield id="customfield_10051" key="com.atlassian.jira.toolkit:participants">
                        <customfieldname>Participants</customfieldname>
                        <customfieldvalues>
                                        <customfieldvalue>auto</customfieldvalue>
            <customfieldvalue>samantha.ritter@mongodb.com</customfieldvalue>
            <customfieldvalue>spencer@mongodb.com</customfieldvalue>
    
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                        <customfield id="customfield_14254" key="com.pyxis.greenhopper.jira:gh-lexo-rank">
                        <customfieldname>Product Rank</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>1|hrm9xz:</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                <customfield id="customfield_12550" key="com.pyxis.greenhopper.jira:gh-lexo-rank">
                        <customfieldname>Rank</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>2|hrtq9r:</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_10558" key="com.pyxis.greenhopper.jira:gh-global-rank">
                        <customfieldname>Rank (Obsolete)</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>87391</customfieldvalue>
                        </customfieldvalues>
                    </customfield>
                                                                                            <customfield id="customfield_23361" key="com.onresolve.jira.groovy.groovyrunner:scripted-field">
                        <customfieldname>Requested By</customfieldname>
                        <customfieldvalues>
                                

                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                <customfield id="customfield_10166" key="com.atlassian.jira.plugin.system.customfieldtypes:radiobuttons">
                        <customfieldname>Tests Written</customfieldname>
                        <customfieldvalues>
                                <customfieldvalue key="10154"><![CDATA[Complete]]></customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_10053" key="com.atlassian.jira.ext.charting:timeinstatus">
                        <customfieldname>Time In Status</customfieldname>
                        <customfieldvalues>
                            
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                                                                        <customfield id="customfield_22870" key="com.onresolve.jira.groovy.groovyrunner:scripted-field">
                        <customfieldname>Triagers</customfieldname>
                        <customfieldvalues>
                                

                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                    <customfield id="customfield_14350" key="com.pyxis.greenhopper.jira:gh-lexo-rank">
                        <customfieldname>serverRank</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>1|hs9x2n:</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                    </customfields>
    </item>
</channel>
</rss>