-
Type: Task
-
Resolution: Unresolved
-
Priority: Major - P3
-
None
-
Affects Version/s: None
-
Component/s: None
-
None
-
Catalog and Routing
-
Execution NAMR Team 2023-06-26
-
3
Periodically a new SERVER ticket pops up where fuzz testing has messed up internal namespace state via drop/rename/etc.
We should explore creating a new auth role/permission for internal namespaces – so that downstream products can still modify internal collections as necessary – and labeling internal namespaces such that they can be identified as such.
Perhaps we can add a tag/field to NamespaceString for internal collection identification. And then create a list of commands (maybe via a test) that are not allowed to modify internal collections.
- is related to
-
SERVER-72090 system.users can be renamed to regular collections and vice versa
- Closed
-
SERVER-82934 Disallow system.preimages collection creation and upserts
- Closed
- related to
-
SERVER-77003 Allow renames of time-series collection buckets
- Closed