Uploaded image for project: 'Core Server'
  1. Core Server
  2. SERVER-24281

User management privileges (like createUser) became the top level privileges

XMLWordPrintableJSON

    • Type: Icon: Improvement Improvement
    • Resolution: Unresolved
    • Priority: Icon: Major - P3 Major - P3
    • Needs Further Definition
    • Affects Version/s: None
    • Component/s: Security
    • None
    • Server Security

      The user management privileges provide the role with the top level security access to the database instance as the user administrator can assign any role to the user.

      It would be great if the role assignment is delegated to the grantRole privilege and the createUser assigns a predefined role (perhaps per database) exclusively.

            Assignee:
            backlog-server-security [DO NOT USE] Backlog - Security Team
            Reporter:
            ricardo.lorenzo Ricardo Lorenzo
            Votes:
            0 Vote for this issue
            Watchers:
            7 Start watching this issue

              Created:
              Updated: