summaryrefslogtreecommitdiff
path: root/src/mongo/db/auth
Commit message (Expand)AuthorAgeFilesLines
* SERVER-8527 Do not try to read the non-existent "$external" database during p...Andy Schwerin2013-02-141-3/+9
* SERVER-8540 Only dbAdmin should be able to read system.profileSpencer T Brody2013-02-121-1/+1
* SERVER-8486 prevent empty dbnames in command params from crashing auth'd mongodEric Milkie2013-02-121-0/+5
* SERVER-8461 When MONGO-CR is not enabled for regular users, still allow it fo...Andy Schwerin2013-02-121-1/+3
* SERVER-7122 Make applyOps require all privileges to run, as it can be used to...Spencer T Brody2013-02-122-2/+0
* SERVER-8368 Don't check authorization for deleting cursors while holding a mu...Spencer T Brody2013-02-071-0/+1
* SERVER-8328 Make naming for roles consistentSpencer T Brody2013-01-241-1/+1
* SERVER-7122 SERVER-8283 Merge serverAdmin role into clusterAdminSpencer T Brody2013-01-222-59/+30
* SERVER-7122 Change replica set commands to be part of clusterAdmin, not serve...Spencer T Brody2013-01-221-8/+8
* SERVER-7122 Grant cloneCollectionLocalSource (used by renameCollection) to db...Spencer T Brody2013-01-221-0/+1
* SERVER-7122 Grant killCursors to serverAdmin roleSpencer T Brody2013-01-222-0/+3
* SERVER-8144 Authenticating 2 users on a db should replace the 1st's privilege...Andy Schwerin2013-01-181-0/+4
* SERVER-7864 Make copyDB, clone, and cloneCollection work with auth.Spencer T Brody2013-01-172-26/+44
* Don't query for the existence of an admin user if we're not on a localhost co...Spencer T Brody2013-01-171-0/+5
* Clarify comment about the internal separation of read-only and read-write sys...Spencer T Brody2013-01-141-1/+2
* SERVER-7119 Make it possible to disable compatibility-form privilege document...Andrew Schwerin2012-12-265-6/+90
* Add mechanism for disabling locahost authorization bypassSpencer T Brody2012-12-231-1/+7
* SERVER-7572 Cache if admin user existsSpencer T Brody2012-12-232-2/+10
* SERVER-7572 SERVER-7122 Remove oldRead and oldWrite ActionTypesSpencer T Brody2012-12-232-7/+1
* SERVER-7572 Restructure security filesSpencer T Brody2012-12-234-2/+141
* SERVER-7125 Implicit privilege acquisition.Andy Schwerin2012-12-218-40/+220
* SERVER-7572 SERVER-7122 Add ensureIndex and dropIndexes to dbAdmin roleSpencer T Brody2012-12-211-1/+3
* SERVER-7982 Upgrade indexes on system.users collections when starting up / op...Andy Schwerin2012-12-213-1/+145
* SERVER-7982 Export some useful constants on AuthorizationManager.Andy Schwerin2012-12-213-17/+20
* Make PrincipalSet::NameIterator::get() valid between the first calls to more(...Mathias Stearn2012-12-212-4/+8
* SERVER-7126 SERVER-7572 Move special casing of system.users and system.profil...Spencer T Brody2012-12-202-74/+51
* SERVER-7122 Fix auth checking for renameCollection commandSpencer T Brody2012-12-201-1/+1
* SERVER-7122 Add required privileges to experimental indexStats and storageDet...Spencer T Brody2012-12-202-0/+4
* Merge branch 'accept_new_docs'Andy Schwerin2012-12-203-0/+219
|\
| * SERVER-7767 Implement a validator for compatibility and extended privilege do...Andy Schwerin2012-12-193-0/+219
* | SERVER-7122 Assign required privileges to renameCollection commandSpencer T Brody2012-12-192-3/+9
|/
* Make AuthorizationManager::checkAuthForPrivilege/s the authoritative privileg...Andy Schwerin2012-12-194-19/+29
* SERVER-7122 Assign required privileges to $eval commandSpencer T Brody2012-12-192-0/+15
* Clang doesn't find this overload at anon ns scopeAndrew Morrow2012-12-181-1/+2
* Don't check for existence of admin users if auth is disabledSpencer T Brody2012-12-171-0/+3
* SERVER-7572 Move noauth declaration into AuthorizationManagerSpencer T Brody2012-12-172-0/+6
* SERVER-7572 Remove invalid dassertSpencer T Brody2012-12-171-2/+3
* SERVER-7767 Support extended privilege document format in the AuthorizationMa...Andy Schwerin2012-12-174-19/+455
* SERVER-7572 Fix unit test compile by implementing startRequest in AuthExterna...Spencer T Brody2012-12-171-0/+2
* SERVER-7572 SERVER-7931 Check for existance of admin user only at the beginni...Spencer T Brody2012-12-179-12/+42
* SERVER-7126 SERVER-7572 Don't use DBDirectClient in AuthorizationManagerSpencer T Brody2012-12-149-58/+52
* Fix segfault when logout command runs on a database with no authenticated users.Andy Schwerin2012-12-141-0/+2
* fix assert codesEric Milkie2012-12-141-1/+1
* SERVER-7091 Iterator over authenticated principal names in AuthorizationManager.Andy Schwerin2012-12-144-0/+59
* SERVER-7934 Have AuthorizationManager::getPrivilegeDocument take PrincipalNam...Andy Schwerin2012-12-148-15/+28
* SERVER-7934 Eliminate AcquiredPrivilege type.Andy Schwerin2012-12-147-81/+36
* Reimplement PrivilegeSet.Andy Schwerin2012-12-1410-170/+423
* SERVER-7122 Grant applyOps and dbHash privileges to proper rolesSpencer T Brody2012-12-131-2/+2
* SERVER-7122 Add required privileges to a few more commandsSpencer T Brody2012-12-112-0/+2
* SERVER-7572 Introduce PrincipalName type, instead of using a pair of strings ...Andy Schwerin2012-12-1110-81/+144
View Lorry Controller Status