diff options
| author | Andy Schwerin <schwerin@10gen.com> | 2013-09-19 15:46:08 -0400 |
|---|---|---|
| committer | Andy Schwerin <schwerin@10gen.com> | 2013-09-26 14:33:43 -0400 |
| commit | 3bc344db791e74f378880fd4ccd2ea045ba238f9 (patch) | |
| tree | 206ad9c8fd4e5d3fcbfa67f981d7c360aecb5983 /buildscripts | |
| parent | 25d5d2ae7c22267d942532de72109d3d7bf67a8c (diff) | |
| download | mongo-3bc344db791e74f378880fd4ccd2ea045ba238f9.tar.gz | |
SERVER-1105 Update AuthorizationSession's logic for collection-level access control.
Also requires changing the privileges of the built-in roles. This patch takes the opportunity to remove the 2.2-style read-only roles in favor of the 2.4-style "read" and "readAnyDatabase" roles, and renames the 2.2-style read-write roles "dbOwner" and "root". The "root" name, at least, is subject to change prior to the next unstable release.
Test harnesses are updated as needed to use the correct builtin roles.
Diffstat (limited to 'buildscripts')
| -rwxr-xr-x | buildscripts/smoke.py | 5 |
1 files changed, 1 insertions, 4 deletions
diff --git a/buildscripts/smoke.py b/buildscripts/smoke.py index 65ceee5212e..bdfec533473 100755 --- a/buildscripts/smoke.py +++ b/buildscripts/smoke.py @@ -169,10 +169,7 @@ class mongod(object): try: Connection( "localhost" , int(port) ).admin.command("createUser", "admin", pwd="password", - roles=["readWriteAnyDatabase", - "dbAdminAnyDatabase", - "userAdminAnyDatabase", - "clusterAdmin"]) + roles=["__system"]) except OperationFailure, e: if e.message == 'need to login': pass # SERVER-4225 |