summaryrefslogtreecommitdiff
path: root/src/mongo/db/auth
Commit message (Collapse)AuthorAgeFilesLines
* SERVER-14426 Add a StringData method to BSONElementSpencer T Brody2014-07-023-22/+12
|
* SERVER-5092 assign default log component to server modulesBenety Goh2014-07-012-0/+9
|
* SERVER-14085: Start using WriteUnitOfWorkGeert Bosch2014-07-011-0/+1
|
* SERVER-2442 SERVER-14378: add listCollections commandEliot Horowitz2014-06-301-0/+1
|
* SERVER-14374 Include server_options.h as needed and apply the std:: ↵Andy Schwerin2014-06-271-1/+2
| | | | | | namespace when missing. Previously, the affected files compiled because of indirect includes from hostandport.h
* SERVER-13635: remove path concept from DatabaseHolder, and move repair and ↵Eliot Horowitz2014-06-181-2/+2
| | | | listDatabase into storageEngine
* SERVER-7596 SCRAM-SHA-1 updateUser command supportAndreas2014-06-162-17/+52
|
* SERVER-7596 Fixed copyright yearsAndreas2014-06-112-2/+2
|
* SERVER-13961 AuthzSessionExternalStateMongod::startRequest doesn't need a ↵Kaloian Manassiev2014-06-051-3/+4
| | | | | | | lock check When called from DBDirectClient, it already skips the check if running under isGod context.
* SERVER-13961 Start using LockState from the OperationContextKaloian Manassiev2014-06-027-6/+11
|
* SERVER-7596 Basic support for SCRAM-SHA1 using Cyrus SASLAndreas2014-05-307-17/+274
|
* SERVER-13641 Plumb OperationContext through to getCollection and all HelpersMathias Stearn2014-05-302-5/+7
|
* SERVER-13961 Pass LockState to DBWrite and DBRead directlyKaloian Manassiev2014-05-3027-122/+159
| | | | | This is part of the changes to move LockState be part of OperationContext and not retrieved from TLS.
* SERVER-14089 Remove support for schemaVersion24 users.Andy Schwerin2014-05-299-1285/+3
|
* Revert "SERVER-13961 Pass LockState to DBWrite and DBRead directly"Kaloian Manassiev2014-05-2827-381/+305
| | | | This reverts commit 0672061deb58aac931912bed68d014247c581968.
* SERVER-13961 Pass LockState to DBWrite and DBRead directlyKaloian Manassiev2014-05-2827-305/+381
| | | | | This is part of the changes to move LockState be part of OperationContext and not retrieved from TLS.
* SERVER-12621 narrow the localhost exception when auth is enabledAmalia Hawkins2014-05-226-12/+89
|
* SERVER-13256: Remove pch - qualify std in headersMark Benvenuto2014-05-199-28/+28
|
* SERVER-13882 Replace boost::function with stdx::function and boost::bind ↵Andy Schwerin2014-05-1611-19/+19
| | | | with stdx::bind.
* SERVER-13264 Move Apache-licensed files to AGPLIan Whalen2014-05-1622-218/+505
| | | | Also update generators.
* SERVER-13641 rename TransactionExperiment to OperationContextHari Khalsa2014-05-152-5/+5
|
* SERVER-13804 add necessary privilege to the built-in restore roleAmalia Hawkins2014-05-141-0/+7
|
* SERVER-11980 Only invalidate the user cache on mongos if authorization ↵Spencer T Brody2014-05-144-20/+100
| | | | information actually changed
* SERVER-13850 Make sure cache entry is up to date before using it to update a ↵Spencer T Brody2014-05-141-4/+0
| | | | user
* SERVER-13797 Abstract $where processing and remove usages of getContextKaloian Manassiev2014-05-091-1/+2
|
* SERVER-13868 Mark V1 users as probed on databases that they do not have ↵Spencer T Brody2014-05-072-2/+5
| | | | surrogate user docs on
* SERVER-11997 Make user cache invalidation finer grainedSpencer T Brody2014-05-053-21/+99
|
* SERVER-13643 pull TransactionExperiment above (most) catalog stuffHari Khalsa2014-04-301-4/+6
|
* SERVER-13643 Plumb TransactionExperiment through dbhelpersMathias Stearn2014-04-302-4/+7
|
* SERVER-13727 add collStats permission to builtin backup roleAmalia Hawkins2014-04-281-1/+4
|
* SERVER-13638: remove unneeded NamespaceDetails includesEliot Horowitz2014-04-211-1/+0
|
* SERVER-13084: remove many cc() calls from query/exec worldEliot Horowitz2014-04-171-1/+1
|
* SERVER-13330 Removed unused setParameter option ↵Spencer T Brody2014-04-144-70/+1
| | | | supportCompatibilityFormPrivilegeDocuments
* SERVER-13084: remove NamespaceDetails::emptyCappedCollection and replace ↵Eliot Horowitz2014-04-031-1/+1
| | | | with Collection::truncate
* SERVER-13269 general log message improvements for 2.6Matt Kangas2014-03-271-1/+1
|
* SERVER-12539 Make mongorestore not interfere with ongoing user or role ↵Spencer T Brody2014-03-056-11/+92
| | | | | | | | modifications This is done by making mongorestore insert the users/roles from the dump files into temporary collections that are later merged into the real admin.system.users and admin.system.roles collections using a new command: _mergeAuthzCollections.
* SERVER-12116 Return better messages to the user when the authz version field ↵Spencer T Brody2014-03-036-16/+39
| | | | is the wrong type
* SERVER-12476 Set internalAuth params when changing clusterAuthModeAndreas Nilsson2014-02-193-15/+18
|
* SERVER:8412: re-write repairDatabase to use new constructsEliot Horowitz2014-02-182-4/+9
| | | | to make clean, also fix Database::createColection
* SERVER-12712 Remove dependency on auth_helpers from C++ clientAndrew Morrow2014-02-143-2/+6
| | | | | We were only pulling in auth_helpers for the password digest. Instead of doing that, move the digest function into the md5 library.
* SERVER-12077 Log when auth schema upgrade fails due to out of date serverSpencer T Brody2014-02-131-1/+1
|
* SERVER-12664 Change nUpdated to nMatched in bulk api resultsRandolph Tan2014-02-1310-16/+16
|
* SERVER-12704: cleanup updatedriver optionsScott Hernandez2014-02-122-2/+0
|
* SERVER-12616 Presume that the localhost exception does not apply in mongos ↵Andy Schwerin2014-02-121-2/+8
| | | | | | | | | | when configs unreachable. If the config servers become unreachable by a mongos server in systems with access control enabled, that mongos must assume that there are user documents in the config server and so the localhost exception does not apply. Otherwise, one needs only block access to the config servers to bypass access controls. While the mongos won't be able to do metadata operations, it will be able to read and write arbitrary data, when directed to do so by a client on the localhost interface.
* Move some code out of auth_helpers.cpp back to the AuthorizationManagerSpencer T Brody2014-02-071-3/+102
|
* Add missing space to error messageSpencer T Brody2014-02-071-1/+1
|
* SERVER-12513 At startup, if a 2.4-style index on admin.system.users is ↵Spencer T Brody2014-02-072-12/+45
| | | | detected, remove it
* SERVER-12541 Give restore role the ability to query admin.system.versionSpencer T Brody2014-02-061-1/+2
|
* SERVER-12597 Remove dead authz codeAndreas Nilsson2014-02-046-42/+0
|
* Revert "SERVER-12513 If a 2.4-style index on admin.system.users is detected, ↵Andy Schwerin2014-01-302-45/+12
| | | | | | remove it" This reverts commit 36c3d951c28cf752789cf881089f3a1683974ac8.
View Lorry Controller Status