diff options
author | Spencer Jackson <spencer.jackson@mongodb.com> | 2016-08-08 11:51:13 -0400 |
---|---|---|
committer | Spencer Jackson <spencer.jackson@mongodb.com> | 2016-08-11 18:58:27 -0400 |
commit | 045a53f469fbede582cdbbd8ba532244d86d488e (patch) | |
tree | 0bd383c589f0c3344b50be5e86e819404a32dfd4 /jstests/auth | |
parent | 844007a979a51a1c7dd49c874f0c50cb66482360 (diff) | |
download | mongo-045a53f469fbede582cdbbd8ba532244d86d488e.tar.gz |
SERVER-22826 Support X509 Authorization
Diffstat (limited to 'jstests/auth')
-rw-r--r-- | jstests/auth/role_management_commands_lib.js | 21 |
1 files changed, 21 insertions, 0 deletions
diff --git a/jstests/auth/role_management_commands_lib.js b/jstests/auth/role_management_commands_lib.js index e1ff7860950..4da8d4bac49 100644 --- a/jstests/auth/role_management_commands_lib.js +++ b/jstests/auth/role_management_commands_lib.js @@ -278,6 +278,27 @@ function runAllRoleManagementCommandsTests(conn, writeConcern) { res = testUserAdmin.runCommand({rolesInfo: 1, showBuiltinRoles: 1}); assert.eq(10, res.roles.length); + + res = testUserAdmin.runCommand({rolesInfo: "testRole1", showPrivileges: 'asUserFragment'}); + assert(res.userFragment); + assert.eq(1, res.userFragment.roles.length); + assert.eq([{role: "testRole1", db: "test"}], res.userFragment.roles); + assert.eq(2, res.userFragment.inheritedRoles.length); + assert.contains({role: "testRole1", db: "test"}, res.userFragment.inheritedRoles); + assert.contains({role: "read", db: "test"}, res.userFragment.inheritedRoles); + assert.gt(res.userFragment.inheritedPrivileges.length, 0); + + res = testUserAdmin.runCommand( + {rolesInfo: ['testRole1', 'testRole2'], showPrivileges: 'asUserFragment'}); + assert(res.userFragment); + assert.eq(2, res.userFragment.roles.length); + assert.contains({role: "testRole1", db: "test"}, res.userFragment.roles); + assert.contains({role: "testRole2", db: "test"}, res.userFragment.roles); + assert.eq(3, res.userFragment.inheritedRoles.length); + assert.contains({role: "testRole1", db: "test"}, res.userFragment.inheritedRoles); + assert.contains({role: "testRole2", db: "test"}, res.userFragment.inheritedRoles); + assert.contains({role: "read", db: "test"}, res.userFragment.inheritedRoles); + assert.gt(res.userFragment.inheritedPrivileges.length, 0); })(); (function testDropRole() { |