Commit Graph

14 Commits

Author SHA1 Message Date
Mark Benvenuto
6dcdd23dd3 SERVER-23971 Clang-Format code 2016-05-28 17:55:12 -04:00
Jonathan Abrahams
4ae691e8ed SERVER-22468 Format JS code with approved style in jstests/ 2016-03-09 12:18:14 -05:00
Mike Grundy
c070452eed SERVER-22341 fix jslint errors in jstests/auth with eslint --fix 2016-02-05 15:00:49 -05:00
Merry Mou
0c695aa1e8 SERVER-13647 give restore privileges to root 2015-08-21 16:06:42 -04:00
Spencer T Brody
49fd6dbb2b SERVER-11555 Replace all occurrences of addUser with createUser in jstests 2013-11-06 17:11:39 -05:00
Spencer T Brody
8093bb525d SERVER-9515 SERVER-6246 SERVER-9517 Instead of "name", in user objects use "user" and in role objects use "role" 2013-10-10 11:52:06 -04:00
Spencer T Brody
3e5905a8d4 SERVER-9517 Rename "source" field for users and roles to "db" 2013-10-06 12:02:45 -04:00
Andy Schwerin
54d8fdb24b SERVER-10670 Maintain role graph consistency.
Keeps the RoleGraph up to date in mongod, and converts MongoS to simply
ask the config server for required information about users and roles.

Performs somewhat aggressive cache invalidation of the users cache in mongod.
Still no cache invalidation in mongos.
2013-10-05 17:39:17 -04:00
Andy Schwerin
3bc344db79 SERVER-1105 Update AuthorizationSession's logic for collection-level access control.
Also requires changing the privileges of the built-in roles.  This patch takes the opportunity to remove the 2.2-style read-only roles in favor of the 2.4-style "read" and "readAnyDatabase" roles, and renames the 2.2-style read-write roles "dbOwner" and "root".  The "root" name, at least, is subject to change prior to the next unstable release.

Test harnesses are updated as needed to use the correct builtin roles.
2013-09-26 14:33:43 -04:00
Spencer T Brody
ec23a4a358 SERVER-9517 Update tests to pass with new user schema 2013-09-06 12:31:22 -04:00
Andy Schwerin
f62d600cb0 SERVER-1891 Consolidate command authorization checking logic.
This reverts commit 2e2a6fdffd and also fixes the build break that the
original "Consolidate command authorization checking logic" patch introduced.
2013-07-17 14:35:14 -04:00
Andy Schwerin
2e2a6fdffd Revert "SERVER-1891 Consolidate command authorization checking logic."
This reverts commit d430713c40.
2013-07-10 16:43:31 -04:00
Andy Schwerin
d430713c40 SERVER-1891 Consolidate command authorization checking logic. 2013-07-10 13:26:13 -04:00
Spencer T Brody
097e3578da SERVER-8623 Don't allow renameCollection to bypass auth checks on system namespaces 2013-02-20 13:26:01 -05:00