-
Type: Bug
-
Resolution: Fixed
-
Priority: Major - P3
-
Affects Version/s: 7.0.5
-
Component/s: None
-
None
-
Server Security
-
Minor Change
-
ALL
-
v8.0, v7.0
-
-
Security 2024-09-16
SERVER-77827 allowed the restore role to drop system.views, but it did so by specifying matchType: exact_namespace. This will realistically only allow dropping admin.system.views which isn't useful.
The restore role should instead allow dropping system.views in any database. This is relied on by mongosync, so it only needs to be addressed for 6.0 and 7.0.
- is related to
-
SERVER-77827 Allow restore role to drop system.views
- Closed