Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | SERVER-45717 Allow changes to clusterIpSourceAllowlist without restart | sergey.galtsev | 2021-11-01 | 1 | -1/+1 |
| | |||||
* | SERVER-48426 Cleaned up admin.system.new_users dead code | Mina Mahmood | 2020-06-24 | 1 | -1/+0 |
| | |||||
* | SERVER-44978 Thread-through ServiceContext and ThreadPool to ReadThroughCache | Kaloian Manassiev | 2020-02-15 | 1 | -2/+2 |
| | | | | | | There are no functional changes to this CR, it just instantiates every usage of ReadThroughCache with a ServiceContext and ThreadPool, which will be used for making the acquire method asynchronous. | ||||
* | SERVER-43721 Make the AuthorizationManager use DistCache | Kaloian Manassiev | 2020-01-16 | 1 | -33/+2 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The DistCache (to be later renamed to ReadThroughCache) was derived from the same implementation under AuthorizationManager and this change removes the code duplication. In addition, it makes the following changes to InvalidatingLRUCache and the DistCache: * Simplifies and optimises the InvalidatingLRUCache: The way it is implemented now, it performs up to 3 operations per lookup, unvalidates entries unnecessarily and has overly complicated logic, which is source of a crash. Instead of fixing the bug, this change rewrites it in a simpler way, which introduces a ValueHandle instead of bare shared_ptr for the return value, and only performs additional work if entries fall off the underlying LRUCache. * Moves the DistCache under src/util and adds unit tests: This change pulls the DistCache (which is the main consumer of InvalidatingLRUCache) into its own library and moves it to be under src/util like the other caches and adds unit tests. delete mode 100644 jstests/auth/pinned_users.js create mode 100644 jstests/auth/pinned_users_clear_pinned_user_list.js create mode 100644 jstests/auth/pinned_users_exclusive_lock_on_admin.js create mode 100644 jstests/auth/pinned_users_remove_user_document_unpins_user.js create mode 100644 src/mongo/util/dist_cache.cpp rename src/mongo/{db => util}/dist_cache.h (56%) create mode 100644 src/mongo/util/dist_cache_test.cpp | ||||
* | SERVER-44372 WeakFunction: a simplification of SHIM_ macros | Billy Donahue | 2019-11-07 | 1 | -1/+6 |
| | |||||
* | SERVER-42165 Replace uses of stdx::mutex with mongo::Mutex | Ben Caimano | 2019-09-17 | 1 | -1/+1 |
| | |||||
* | SERVER-39339 Remove `stdx/memory.h` | ADAM David Alan Martin | 2019-06-10 | 1 | -1/+0 |
| | |||||
* | SERVER-40476 remove mongoutils::str | Billy Donahue | 2019-04-09 | 1 | -1/+1 |
| | | | | | | Rename utils/mongoutils/str.h => utils/str.h Rename namespace mongoutils::str => str Rename mongo::strcasecmp => str::caseInsensitiveCompare. | ||||
* | SERVER-38984 Validate unique User ID on UserCache hit | Sara Golemon | 2019-02-14 | 1 | -0/+1 |
| | |||||
* | SERVER-39560 - remove leading blank line on all C++ files | Billy Donahue | 2019-02-13 | 1 | -1/+0 |
| | | | | | | Remove leading comments that are just stating the filename. Move any file-level comments below the copyright banner. Remove leading blank lines. | ||||
* | SERVER-38249 Implement stdx unordered_map and unordered_set as absl node ↵ | Henrik Edin | 2018-12-20 | 1 | -1/+0 |
| | | | | | | | | | | hash map/set. Remove stdx::unordered_multimap and multiset. Custom hashers to stdx::unordered_map are not trusted by default, we will rehash the produced hash with absl again to ensure we have a good hash function. | ||||
* | SERVER-37651 Update header files with new license | Ramon Fernandez | 2018-10-22 | 1 | -14/+16 |
| | |||||
* | SERVER-8240 Convert std::string parameters in auth module to StringData, as ↵ | Kashish Garg | 2018-06-08 | 1 | -8/+9 |
| | | | | appropriate | ||||
* | SERVER-33008 Slice Authorization framework | ADAM David Alan Martin | 2018-05-11 | 1 | -705/+29 |
| | | | | | | | | The Authorization framework was intertwined with many subsystems and needed to be properly abstracted in order to facilitate cutting down on certain unnecessary dependencies in some libraries. This also facilitates creating a reduced authorization framework for use in embedded builds. | ||||
* | SERVER-33275 Remove `platform/unordered_`* headers | ADAM David Alan Martin | 2018-02-14 | 1 | -6/+8 |
| | | | | | | These headers date from before C++11 support and the `::mongo::stdx::` namespace. They can be removed and uses of the names therein can be changed to `::mongo::stdx::unordered_`* forms. | ||||
* | SERVER-32951 Add lib for embedded options where we can have a different set ↵ | Henrik Edin | 2018-02-14 | 1 | -1/+1 |
| | | | | of startup options. Also reduce dependencies on embedded. | ||||
* | SERVER-30580 No more status locations | Mathias Stearn | 2017-08-16 | 1 | -2/+1 |
| | |||||
* | SERVER-30566: Unwind SERVER-28190 | Spencer Jackson | 2017-08-11 | 1 | -35/+3 |
| | |||||
* | SERVER-29371 Move auth privilege.h/.cpp into own library for use in agg | James Wahlin | 2017-07-25 | 1 | -0/+1 |
| | |||||
* | SERVER-29183 Add restriction support to rolesInfo | Sara Golemon | 2017-07-24 | 1 | -3/+6 |
| | |||||
* | SERVER-29173: Parse authentication restrictions from user documents | Sara Golemon | 2017-07-14 | 1 | -0/+4 |
| | |||||
* | SERVER-29176: Implement --clusterIpSourceWhitelist | ADAM David Alan Martin | 2017-07-12 | 1 | -3/+25 |
| | |||||
* | SERVER-29175: Add restriction support to AuthorizationSession | Spencer Jackson | 2017-07-11 | 1 | -0/+3 |
| | |||||
* | SERVER-27244 Status usage compile-time facilities. | ADAM David Alan Martin | 2017-06-18 | 1 | -9/+9 |
| | | | | | | | | | | | | | | | | | There are numerous places in the codebase where `mongo::Status` or `mongo::StatusWith< T >` objects are returned and never checked. Many of these are innocuous, but many of them are potentially severe bugs. This change introduces facilities to permit compile-time warning of unchecked `Status` and `StatusWith` usage on clang compilers. It introduces an `ignore` function which is useful to state that a specific "ignored status" case was intentional. It not presently an error, in clang builds, to forget to check a `Status` -- this will come in a later commit. This also introduces a `transitional_ignore` function, which allows for easy continual auditing of the codebase for current "whitelisted" unchecked-status instances. All present "ignored status" cases have been marked `transitional_ignore`. | ||||
* | SERVER-28190 Add internal tracking ids to users | samantharitter | 2017-05-05 | 1 | -3/+35 |
| | |||||
* | SERVER-28534 Pass collection names around as NamespaceStrings more often | Geert Bosch | 2017-04-02 | 1 | -18/+21 |
| | | | | | | | Before this patch 'ns' values were often passed around as std::string or char* containing either a dbname (no '.'), a dbname with '.$cmd', or a fully qualified collection name. Instead pass either plain 'dbName' value (as string) or a fully qualified name using the actual NamespaceString type. | ||||
* | SERVER-27938 Rename all OperationContext variables to opCtx | Maria van Keulen | 2017-03-07 | 1 | -21/+21 |
| | | | | | | This commit is an automated rename of all whole word instances of txn, _txn, and txnPtr to opCtx, _opCtx, and opCtxPtr, respectively in all .cpp and .h files in src/mongo. | ||||
* | SERVER-24991 log redaction for bson, client, auth, catalog | Thomas Schubert | 2016-09-02 | 1 | -2/+2 |
| | |||||
* | SERVER-22826 Support X509 Authorization | Spencer Jackson | 2016-08-11 | 1 | -4/+12 |
| | |||||
* | Revert "SERVER-22826 Support X509 Authorization" | Spencer Jackson | 2016-08-10 | 1 | -12/+4 |
| | | | | This reverts commit d930f4832631eca7092ada4328d780f2b8d19d31. | ||||
* | SERVER-22826 Support X509 Authorization | Spencer Jackson | 2016-08-09 | 1 | -4/+12 |
| | |||||
* | SERVER-21378 add setParameter startupAuthSchemaValidation used to bypass ↵ | Hai-Kinh Hoang | 2016-08-04 | 1 | -0/+8 |
| | | | | auth metadata startup validation checks | ||||
* | SERVER-23971 Clang-Format code | Mark Benvenuto | 2016-05-28 | 1 | -6/+10 |
| | |||||
* | SERVER-23548 Remove VS2013 workarounds | Mark Benvenuto | 2016-05-03 | 1 | -2/+0 |
| | |||||
* | SERVER-23394: Prevent AuthorizationManager deadlock with profiling | Spencer Jackson | 2016-04-20 | 1 | -1/+1 |
| | |||||
* | SERVER-22057 refactor OpObserver::onUpdate and ↵ | Dianna Hohensee | 2016-01-15 | 1 | -1/+1 |
| | | | | MigrationSourceManager::logUpdateOp to directly take the updated document | ||||
* | SERVER-19543 Thread OperationContext through to everywhere that accesses the ↵ | Spencer T Brody | 2015-08-12 | 1 | -4/+6 |
| | | | | CatalogManager | ||||
* | SERVER-19313 Remove some obsoleted usages of boost | Andrew Morrow | 2015-07-09 | 1 | -1/+0 |
| | |||||
* | SERVER-18579: Clang-Format - reformat code, no comment reflow | Mark Benvenuto | 2015-06-20 | 1 | -573/+550 |
| | |||||
* | SERVER-18723 boost -> stdx for mutex, unique_lock, and lock_guard | Adam Midvidy | 2015-06-17 | 1 | -3/+3 |
| | |||||
* | SERVER-17309 Replace std::auto_ptr<T> with std::unique_ptr<T> | Andrew Morrow | 2015-06-10 | 1 | -4/+4 |
| | |||||
* | SERVER-18007 support non-default constructible types in StatusWith | Adam Midvidy | 2015-06-04 | 1 | -6/+4 |
| | |||||
* | SERVER-18328 SERVER-18478 AuthzManagerExternalState for mongos should go ↵ | Daniel Alabi | 2015-05-22 | 1 | -9/+0 |
| | | | | through the catalog manager | ||||
* | SERVER-18478 Clean up AuthzManagerExternalState | Daniel Alabi | 2015-05-21 | 1 | -119/+0 |
| | | | | Removed insert/remove/update from the AuthzManagerExternalState* interfaces | ||||
* | SERVER-18478 Remove unused update*Credentials and upgradeSchema* from the ↵ | Daniel Alabi | 2015-05-21 | 1 | -145/+0 |
| | | | | AuthorizationManager interface | ||||
* | SERVER-18478 Get rid of UpdateGuard and simplify locking for user management ↵ | Daniel Alabi | 2015-05-18 | 1 | -9/+0 |
| | | | | commands on mongod | ||||
* | SERVER-18244: Refactor AuthorizationManagerExternalState creation | Spencer Jackson | 2015-05-06 | 1 | -2/+3 |
| | |||||
* | SERVER-18290: Fix user string parsing from oplog | Spencer Jackson | 2015-05-01 | 1 | -1/+1 |
| | |||||
* | SERVER-17817 When setting up ClientBasic, get AuthorizationSession object ↵ | Andy Schwerin | 2015-04-06 | 1 | -1/+7 |
| | | | | from AuthorizationManager. | ||||
* | SERVER-17496 Move sharding-specific auth code out of client | Kaloian Manassiev | 2015-03-26 | 1 | -1/+0 |
| |