summaryrefslogtreecommitdiff
path: root/src/mongo/db/auth/authz_manager_external_state_s.cpp
diff options
context:
space:
mode:
authorMark Benvenuto <mark.benvenuto@mongodb.com>2015-06-20 00:22:50 -0400
committerMark Benvenuto <mark.benvenuto@mongodb.com>2015-06-20 10:56:02 -0400
commit9c2ed42daa8fbbef4a919c21ec564e2db55e8d60 (patch)
tree3814f79c10d7b490948d8cb7b112ac1dd41ceff1 /src/mongo/db/auth/authz_manager_external_state_s.cpp
parent01965cf52bce6976637ecb8f4a622aeb05ab256a (diff)
downloadmongo-9c2ed42daa8fbbef4a919c21ec564e2db55e8d60.tar.gz
SERVER-18579: Clang-Format - reformat code, no comment reflow
Diffstat (limited to 'src/mongo/db/auth/authz_manager_external_state_s.cpp')
-rw-r--r--src/mongo/db/auth/authz_manager_external_state_s.cpp260
1 files changed, 123 insertions, 137 deletions
diff --git a/src/mongo/db/auth/authz_manager_external_state_s.cpp b/src/mongo/db/auth/authz_manager_external_state_s.cpp
index 11d0bf3720f..91ca85ee3ef 100644
--- a/src/mongo/db/auth/authz_manager_external_state_s.cpp
+++ b/src/mongo/db/auth/authz_manager_external_state_s.cpp
@@ -49,153 +49,139 @@
namespace mongo {
- AuthzManagerExternalStateMongos::AuthzManagerExternalStateMongos() = default;
-
- AuthzManagerExternalStateMongos::~AuthzManagerExternalStateMongos() = default;
-
- Status AuthzManagerExternalStateMongos::initialize(OperationContext* txn) {
- return Status::OK();
+AuthzManagerExternalStateMongos::AuthzManagerExternalStateMongos() = default;
+
+AuthzManagerExternalStateMongos::~AuthzManagerExternalStateMongos() = default;
+
+Status AuthzManagerExternalStateMongos::initialize(OperationContext* txn) {
+ return Status::OK();
+}
+
+std::unique_ptr<AuthzSessionExternalState>
+AuthzManagerExternalStateMongos::makeAuthzSessionExternalState(AuthorizationManager* authzManager) {
+ return stdx::make_unique<AuthzSessionExternalStateMongos>(authzManager);
+}
+
+Status AuthzManagerExternalStateMongos::getStoredAuthorizationVersion(OperationContext* txn,
+ int* outVersion) {
+ // Note: we are treating
+ // { 'getParameter' : 1, <authSchemaVersionServerParameter> : 1 }
+ // as a user management command since this is the *only* part of mongos
+ // that runs this command
+ BSONObj getParameterCmd = BSON("getParameter" << 1 << authSchemaVersionServerParameter << 1);
+ BSONObjBuilder builder;
+ const bool ok =
+ grid.catalogManager()->runUserManagementReadCommand("admin", getParameterCmd, &builder);
+ BSONObj cmdResult = builder.obj();
+ if (!ok) {
+ return Command::getStatusFromCommandResult(cmdResult);
}
- std::unique_ptr<AuthzSessionExternalState>
- AuthzManagerExternalStateMongos::makeAuthzSessionExternalState(
- AuthorizationManager* authzManager) {
-
- return stdx::make_unique<AuthzSessionExternalStateMongos>(authzManager);
+ BSONElement versionElement = cmdResult[authSchemaVersionServerParameter];
+ if (versionElement.eoo()) {
+ return Status(ErrorCodes::UnknownError, "getParameter misbehaved.");
}
-
- Status AuthzManagerExternalStateMongos::getStoredAuthorizationVersion(
- OperationContext* txn, int* outVersion) {
- // Note: we are treating
- // { 'getParameter' : 1, <authSchemaVersionServerParameter> : 1 }
- // as a user management command since this is the *only* part of mongos
- // that runs this command
- BSONObj getParameterCmd = BSON("getParameter" << 1 <<
- authSchemaVersionServerParameter << 1);
- BSONObjBuilder builder;
- const bool ok = grid.catalogManager()->runUserManagementReadCommand("admin",
- getParameterCmd,
- &builder);
- BSONObj cmdResult = builder.obj();
- if (!ok) {
- return Command::getStatusFromCommandResult(cmdResult);
- }
-
- BSONElement versionElement = cmdResult[authSchemaVersionServerParameter];
- if (versionElement.eoo()) {
- return Status(ErrorCodes::UnknownError, "getParameter misbehaved.");
- }
- *outVersion = versionElement.numberInt();
-
- return Status::OK();
+ *outVersion = versionElement.numberInt();
+
+ return Status::OK();
+}
+
+Status AuthzManagerExternalStateMongos::getUserDescription(OperationContext* txn,
+ const UserName& userName,
+ BSONObj* result) {
+ BSONObj usersInfoCmd =
+ BSON("usersInfo" << BSON_ARRAY(BSON(AuthorizationManager::USER_NAME_FIELD_NAME
+ << userName.getUser()
+ << AuthorizationManager::USER_DB_FIELD_NAME
+ << userName.getDB())) << "showPrivileges" << true
+ << "showCredentials" << true);
+ BSONObjBuilder builder;
+ const bool ok =
+ grid.catalogManager()->runUserManagementReadCommand("admin", usersInfoCmd, &builder);
+ BSONObj cmdResult = builder.obj();
+ if (!ok) {
+ return Command::getStatusFromCommandResult(cmdResult);
}
- Status AuthzManagerExternalStateMongos::getUserDescription(
- OperationContext* txn, const UserName& userName, BSONObj* result) {
- BSONObj usersInfoCmd = BSON("usersInfo" <<
- BSON_ARRAY(BSON(AuthorizationManager::USER_NAME_FIELD_NAME <<
- userName.getUser() <<
- AuthorizationManager::USER_DB_FIELD_NAME <<
- userName.getDB())) <<
- "showPrivileges" << true <<
- "showCredentials" << true);
- BSONObjBuilder builder;
- const bool ok = grid.catalogManager()->runUserManagementReadCommand("admin",
- usersInfoCmd,
- &builder);
- BSONObj cmdResult = builder.obj();
- if (!ok) {
- return Command::getStatusFromCommandResult(cmdResult);
- }
-
- std::vector<BSONElement> foundUsers = cmdResult["users"].Array();
- if (foundUsers.size() == 0) {
- return Status(ErrorCodes::UserNotFound,
- "User \"" + userName.toString() + "\" not found");
- }
-
- if (foundUsers.size() > 1) {
- return Status(ErrorCodes::UserDataInconsistent,
- str::stream() << "Found multiple users on the \""
- << userName.getDB() << "\" database with name \""
- << userName.getUser() << "\"");
- }
- *result = foundUsers[0].Obj().getOwned();
- return Status::OK();
+ std::vector<BSONElement> foundUsers = cmdResult["users"].Array();
+ if (foundUsers.size() == 0) {
+ return Status(ErrorCodes::UserNotFound, "User \"" + userName.toString() + "\" not found");
}
- Status AuthzManagerExternalStateMongos::getRoleDescription(const RoleName& roleName,
- bool showPrivileges,
- BSONObj* result) {
- BSONObj rolesInfoCmd = BSON("rolesInfo" <<
- BSON_ARRAY(BSON(AuthorizationManager::ROLE_NAME_FIELD_NAME <<
- roleName.getRole() <<
- AuthorizationManager::ROLE_DB_FIELD_NAME <<
- roleName.getDB())) <<
- "showPrivileges" << showPrivileges);
- BSONObjBuilder builder;
- const bool ok = grid.catalogManager()->runUserManagementReadCommand("admin",
- rolesInfoCmd,
- &builder);
- BSONObj cmdResult = builder.obj();
- if (!ok) {
- return Command::getStatusFromCommandResult(cmdResult);
- }
-
- std::vector<BSONElement> foundRoles = cmdResult["roles"].Array();
- if (foundRoles.size() == 0) {
- return Status(ErrorCodes::RoleNotFound,
- "Role \"" + roleName.toString() + "\" not found");
- }
-
- if (foundRoles.size() > 1) {
- return Status(ErrorCodes::RoleDataInconsistent,
- str::stream() << "Found multiple roles on the \""
- << roleName.getDB() << "\" database with name \""
- << roleName.getRole() << "\"");
- }
- *result = foundRoles[0].Obj().getOwned();
- return Status::OK();
+ if (foundUsers.size() > 1) {
+ return Status(ErrorCodes::UserDataInconsistent,
+ str::stream() << "Found multiple users on the \"" << userName.getDB()
+ << "\" database with name \"" << userName.getUser() << "\"");
+ }
+ *result = foundUsers[0].Obj().getOwned();
+ return Status::OK();
+}
+
+Status AuthzManagerExternalStateMongos::getRoleDescription(const RoleName& roleName,
+ bool showPrivileges,
+ BSONObj* result) {
+ BSONObj rolesInfoCmd =
+ BSON("rolesInfo" << BSON_ARRAY(BSON(
+ AuthorizationManager::ROLE_NAME_FIELD_NAME
+ << roleName.getRole() << AuthorizationManager::ROLE_DB_FIELD_NAME
+ << roleName.getDB())) << "showPrivileges" << showPrivileges);
+ BSONObjBuilder builder;
+ const bool ok =
+ grid.catalogManager()->runUserManagementReadCommand("admin", rolesInfoCmd, &builder);
+ BSONObj cmdResult = builder.obj();
+ if (!ok) {
+ return Command::getStatusFromCommandResult(cmdResult);
}
- Status AuthzManagerExternalStateMongos::getRoleDescriptionsForDB(const std::string dbname,
- bool showPrivileges,
- bool showBuiltinRoles,
- std::vector<BSONObj>* result) {
- BSONObj rolesInfoCmd = BSON("rolesInfo" << 1 <<
- "showPrivileges" << showPrivileges <<
- "showBuiltinRoles" << showBuiltinRoles);
- BSONObjBuilder builder;
- const bool ok = grid.catalogManager()->runUserManagementReadCommand(dbname,
- rolesInfoCmd,
- &builder);
- BSONObj cmdResult = builder.obj();
- if (!ok) {
- return Command::getStatusFromCommandResult(cmdResult);
- }
- for (BSONObjIterator it(cmdResult["roles"].Obj()); it.more(); it.next()) {
- result->push_back((*it).Obj().getOwned());
- }
- return Status::OK();
+ std::vector<BSONElement> foundRoles = cmdResult["roles"].Array();
+ if (foundRoles.size() == 0) {
+ return Status(ErrorCodes::RoleNotFound, "Role \"" + roleName.toString() + "\" not found");
}
- bool AuthzManagerExternalStateMongos::hasAnyPrivilegeDocuments(OperationContext* txn) {
- BSONObj usersInfoCmd = BSON("usersInfo" << 1);
- BSONObjBuilder builder;
- const bool ok = grid.catalogManager()->runUserManagementReadCommand("admin",
- usersInfoCmd,
- &builder);
- if (!ok) {
- // If we were unable to complete the query,
- // it's best to assume that there _are_ privilege documents. This might happen
- // if the node contaning the users collection becomes transiently unavailable.
- // See SERVER-12616, for example.
- return true;
- }
-
- BSONObj cmdResult = builder.obj();
- std::vector<BSONElement> foundUsers = cmdResult["users"].Array();
- return foundUsers.size() > 0;
+ if (foundRoles.size() > 1) {
+ return Status(ErrorCodes::RoleDataInconsistent,
+ str::stream() << "Found multiple roles on the \"" << roleName.getDB()
+ << "\" database with name \"" << roleName.getRole() << "\"");
}
+ *result = foundRoles[0].Obj().getOwned();
+ return Status::OK();
+}
+
+Status AuthzManagerExternalStateMongos::getRoleDescriptionsForDB(const std::string dbname,
+ bool showPrivileges,
+ bool showBuiltinRoles,
+ std::vector<BSONObj>* result) {
+ BSONObj rolesInfoCmd = BSON("rolesInfo" << 1 << "showPrivileges" << showPrivileges
+ << "showBuiltinRoles" << showBuiltinRoles);
+ BSONObjBuilder builder;
+ const bool ok =
+ grid.catalogManager()->runUserManagementReadCommand(dbname, rolesInfoCmd, &builder);
+ BSONObj cmdResult = builder.obj();
+ if (!ok) {
+ return Command::getStatusFromCommandResult(cmdResult);
+ }
+ for (BSONObjIterator it(cmdResult["roles"].Obj()); it.more(); it.next()) {
+ result->push_back((*it).Obj().getOwned());
+ }
+ return Status::OK();
+}
+
+bool AuthzManagerExternalStateMongos::hasAnyPrivilegeDocuments(OperationContext* txn) {
+ BSONObj usersInfoCmd = BSON("usersInfo" << 1);
+ BSONObjBuilder builder;
+ const bool ok =
+ grid.catalogManager()->runUserManagementReadCommand("admin", usersInfoCmd, &builder);
+ if (!ok) {
+ // If we were unable to complete the query,
+ // it's best to assume that there _are_ privilege documents. This might happen
+ // if the node contaning the users collection becomes transiently unavailable.
+ // See SERVER-12616, for example.
+ return true;
+ }
+
+ BSONObj cmdResult = builder.obj();
+ std::vector<BSONElement> foundUsers = cmdResult["users"].Array();
+ return foundUsers.size() > 0;
+}
-} // namespace mongo
+} // namespace mongo
View Lorry Controller Status