1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
|
/**
* This test checks the upgrade path from noauth to keyFile.
*
* This test requires users to persist across a restart.
* @tags: [requires_persistence]
*/
load('jstests/multiVersion/libs/multi_rs.js');
(function() {
'use strict';
var keyFilePath = 'jstests/libs/key1';
// Disable auth explicitly
var noAuthOptions = {noauth: ''};
// Undefine the flags we're replacing, otherwise upgradeSet will keep old values.
var transitionToAuthOptions =
{noauth: undefined, clusterAuthMode: 'keyFile', keyFile: keyFilePath, transitionToAuth: ''};
var keyFileOptions = {
clusterAuthMode: 'keyFile',
keyFile: keyFilePath,
transitionToAuth: undefined
};
var rst = new ReplSetTest({name: 'noauthSet', nodes: 3, nodeOptions: noAuthOptions});
rst.startSet();
rst.initiate();
var rstConn1 = rst.getPrimary();
// Create a user to login as when auth is enabled later
rstConn1.getDB('admin').createUser({user: 'root', pwd: 'root', roles: ['root']});
rstConn1.getDB('test').a.insert({a: 1, str: 'TESTTESTTEST'});
assert.eq(1, rstConn1.getDB('test').a.count(), 'Error interacting with replSet');
print('=== UPGRADE noauth -> transitionToAuth/keyFile ===');
rst.upgradeSet(transitionToAuthOptions);
var rstConn2 = rst.getPrimary();
rstConn2.getDB('test').a.insert({a: 1, str: 'TESTTESTTEST'});
assert.eq(2, rstConn2.getDB('test').a.count(), 'Error interacting with replSet');
print('=== UPGRADE transitionToAuth/keyFile -> keyFile ===');
rst.upgradeSet(keyFileOptions, 'root', 'root');
// upgradeSet leaves its connections logged in as root
var rstConn3 = rst.getPrimary();
rstConn3.getDB('test').a.insert({a: 1, str: 'TESTTESTTEST'});
assert.eq(3, rstConn3.getDB('test').a.count(), 'Error interacting with replSet');
rst.stopSet();
}());
|
