summaryrefslogtreecommitdiff
path: root/jstests/auth
Commit message (Collapse)AuthorAgeFilesLines
* SERVER-12088 Enable usePowerOf2Sizes as server-wide defaultDan Pasette2014-01-211-2/+14
|
* SERVER-8871 admin hintsBenety Goh2014-01-151-0/+23
|
* SERVER-5470 updated plan cache commands per updated specBenety Goh2014-01-151-1/+1
|
* SERVER-12035 Allow clusterMonitor role to get the current profiling levelSpencer T Brody2014-01-081-1/+38
|
* SERVER-12067 Make copydb command work with auth enabled when source is localSpencer T Brody2014-01-073-1/+52
|
* SERVER-11961 Make names of the direct and indirect privileges and roles ↵Spencer T Brody2014-01-071-7/+7
| | | | fields consistent in usersInfo and rolesInfo
* SERVER-12119 Add new command to allow applications to append notes to the oplogSpencer T Brody2014-01-071-0/+23
|
* SERVER-12241 Combine internal action types into oneAndreas Nilsson2014-01-071-6/+6
|
* Rename role groups requiring "read" privileges from readWrite to read in testSpencer T Brody2014-01-061-31/+31
|
* Add backup and restore roles to commands testSpencer T Brody2014-01-062-15/+53
|
* Add jstest for access control of inprog, killOp, and unlock operationsSpencer T Brody2014-01-061-0/+229
|
* Add jstest that updating user/role data on one mongos propagates to the ↵Spencer T Brody2014-01-061-0/+171
| | | | other mongoses
* Add jstest for access control around user and role modificationsSpencer T Brody2014-01-061-0/+307
|
* SERVER-5470 added plan cache DB commandsBenety Goh2013-12-311-0/+46
|
* Add jstest that user and role information gets replicated to secondariesSpencer T Brody2013-12-131-0/+233
|
* Add jstest for role management commandsSpencer T Brody2013-12-111-0/+270
|
* Add jstest for user management commandsSpencer T Brody2013-12-101-0/+186
|
* Add basic jstest for user defined rolesSpencer T Brody2013-12-041-0/+149
|
* SERVER-11866 Make renameCollectionSameDB not work if you have find on the ↵Spencer T Brody2013-12-033-413/+460
| | | | dest but not the source
* SERVER-11481: ignore top command during sharded auth testScott Hernandez2013-11-191-0/+1
|
* SERVER-10151 Re-enable the 'Test change role' section of ↵Spencer T Brody2013-11-181-13/+8
| | | | auth/basic_role_auth.js by using the updateUser command
* SERVER-11709 RoleGraph should ignore oplog entries for the applyOps command.Andy Schwerin2013-11-151-0/+220
| | | | | | The individual operations in the command will be separately applied, so there's nothing for the RoleGraph to do with the applyOps command itself. Includes an integration test of role replication.
* SERVER-9514 Account for new privileges in clusterManager built-in role in tests.Andy Schwerin2013-11-141-2/+2
|
* SERVER-9513 Merge several ActionTypes togetherSpencer T Brody2013-11-121-10/+10
|
* SERVER-10944 Prevent creating and granting roles on the $external databaseSpencer T Brody2013-11-111-1/+1
|
* SERVER-11085 Make renameCollection adminOnly on mongos, to match behavior on ↵Spencer T Brody2013-11-081-4/+0
| | | | mongod
* SERVER-10963 Remove unnecessary privilege requirements from aggregationSpencer T Brody2013-11-081-4/+0
|
* Make sure cluster roles have access to system collections in config dbSpencer T Brody2013-11-081-1/+1
|
* SERVER-11388 Only allow roles to have privileges on their own database, ↵Spencer T Brody2013-11-061-7/+7
| | | | unless the role is on the 'admin' db
* SERVER-11555 Replace all occurrences of addUser with createUser in jstestsSpencer T Brody2013-11-0624-64/+64
|
* Change several sharding commands access control checks to use the ↵Spencer T Brody2013-11-061-18/+18
| | | | database/collection they target rather than the cluster resource
* Rename commands js testsSpencer T Brody2013-11-053-2/+2
|
* SERVER-9516 Enhance privileges of builtin roles to handle auth upgrade ↵Andy Schwerin2013-11-051-0/+2
| | | | | | | | | | | system collections. This commit lets userAdminAnyDatabase role run listDatabases, since it was the only AnyDatabase role that couldn't. It also uses constants for auth collections in RoleGraph. Finally, it grants access to new_users and backup_users.
* SERVER-8580 add auth test for commands with user-defined rolesDavid Storch2013-11-044-1465/+2609
| | | | Signed-off-by: Spencer T Brody <spencer@10gen.com>
* Give external users a 'credentials' fieldSpencer T Brody2013-10-291-1/+1
|
* SERVER-9579 fixed dbpath prefix for all smoke tests that start (multiple) ↵Benety Goh2013-10-298-12/+12
| | | | mongod processes through the mongo shell
* QA-341 Update jstests/auth/commands.js test to correctly use new built-in ↵Spencer T Brody2013-10-291-22/+68
| | | | roles and detect invalid roles
* SERVER-11428 Fix copyauth.js test in enterprise builders by forcing ↵Spencer T Brody2013-10-281-0/+2
| | | | authMechanism to MONGODB-CR
* SERVER-8213 Make copyDB and clone work with auth when using new-style usersSpencer T Brody2013-10-281-4/+5
|
* SERVER-9514 Split up clusterAdmin role actions into three new more-specific ↵Spencer T Brody2013-10-281-85/+182
| | | | roles
* SERVER-11309 Fix namespace parsing in access control check for ↵Spencer T Brody2013-10-241-3/+10
| | | | checkShardingIndex command
* SERVER-9233 fix sporadic smokeAuth buildbot failuresDavid Storch2013-10-231-0/+2
| | | | Signed-off-by: Spencer T Brody <spencer@10gen.com>
* SERVER-9233 add comprehensive jstest for role-based access control for commandsDavid Storch2013-10-181-0/+1313
| | | | Signed-off-by: Spencer T Brody <spencer@10gen.com>
* SERVER-10794 Maintain backwards-compatible form of addUser for one more releaseSpencer T Brody2013-10-1118-40/+54
|
* SERVER-9515 SERVER-6246 SERVER-9517 Instead of "name", in user objects use ↵Spencer T Brody2013-10-104-22/+22
| | | | "user" and in role objects use "role"
* SERVER-6246 SERVER-9515 Update usersInfo and rolesInfo commands to new APISpencer T Brody2013-10-061-1/+1
|
* SERVER-6246 SERVER-9515 Rename removeUser and removeRole commands to ↵Spencer T Brody2013-10-063-3/+3
| | | | dropUser/dropRole
* SERVER-9517 Rename "source" field for users and roles to "db"Spencer T Brody2013-10-064-7/+7
|
* SERVER-10670 Maintain role graph consistency.Andy Schwerin2013-10-051-10/+2
| | | | | | | | Keeps the RoleGraph up to date in mongod, and converts MongoS to simply ask the config server for required information about users and roles. Performs somewhat aggressive cache invalidation of the users cache in mongod. Still no cache invalidation in mongos.
* SERVER-1105 Update AuthorizationSession's logic for collection-level access ↵Andy Schwerin2013-09-263-20/+61
| | | | | | | | control. Also requires changing the privileges of the built-in roles. This patch takes the opportunity to remove the 2.2-style read-only roles in favor of the 2.4-style "read" and "readAnyDatabase" roles, and renames the 2.2-style read-write roles "dbOwner" and "root". The "root" name, at least, is subject to change prior to the next unstable release. Test harnesses are updated as needed to use the correct builtin roles.
View Lorry Controller Status