Uploaded image for project: 'Core Server'
  1. Core Server
  2. SERVER-21535

mongos should ignore actions it doesn't recognize when parsing user privileges at authentication time

    • Type: Icon: Bug Bug
    • Resolution: Done
    • Priority: Icon: Major - P3 Major - P3
    • 3.3.0
    • Affects Version/s: None
    • Component/s: Security, Sharding
    • Minor Change
    • ALL
    • v3.2
    • Sharding C (11/20/15), Sharding D (12/11/15)

      This is to aid mixed-version operation during upgrade.

      Now that we update mongods before mongoses, we can run into a problem where a user goes to authenticated to an old mongos, the mongos goes to load the privileges for that user from a new config server mongod, and then the mongos sees actions it doesn't recognize. This currently causes mongos to completely ignore any privileges with actions it doesn't recognize, which could leave the user logged in but missing many of the privileges they expect to see.

            Assignee:
            spencer@mongodb.com Spencer Brody (Inactive)
            Reporter:
            spencer@mongodb.com Spencer Brody (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            7 Start watching this issue

              Created:
              Updated:
              Resolved: