Thursday, November 17, 2016

MongoDB - Create custom role examples




MongoDB Enterprise TO_BE_SECURED:PRIMARY> use admin
MongoDB Enterprise TO_BE_SECURED:PRIMARY> db.createRole({role:'ROLE1', privileges:[{resource:{ db: "HR", collection: "" },actions:[ "find","dropUser"]},{resource:{ db: "HR", collection: "employees" },actions:["update", "insert", "remove"]}],roles: [{ role: "userAdmin", db: "HR" }]},{w:"majority",wtimeout:5000 })

MongoDB Enterprise TO_BE_SECURED:PRIMARY> db.createRole({role:'ROLE2', privileges:[{resource:{ db: "HR", collection: "" },actions:["update", "insert", "remove"]}],roles: [{ role: "dbOwner", db: "HR" }]},{w:"majority",wtimeout:5000 })

MongoDB Enterprise TO_BE_SECURED:PRIMARY> db.createRole({role:'ROLE3', privileges:[{resource:{ db: "HR", collection: "employees" },actions:[ "find","update"]}],roles: []},{w:"majority",wtimeout:5000 })

MongoDB Enterprise TO_BE_SECURED:PRIMARY> db = db.getSisterDB('admin');
MongoDB Enterprise TO_BE_SECURED:PRIMARY> var roles = db.getRoles({showPrivileges: true});
MongoDB Enterprise TO_BE_SECURED:PRIMARY> var sortedRoles = roles.map((role) => {return {role: role.role,inheritedRoles: role.inheritedRoles,privileges: role.privileges};}).sort((a, b) => (a.role > b.role));
MongoDB Enterprise TO_BE_SECURED:PRIMARY> print(JSON.stringify(sortedRoles));

Reference: https://docs.mongodb.com/manual/reference/resource-document/#database-and-or-collection-resource
Posted by Luo Donghua at 9:39 PM
Labels:

1 comment:

  1. madinNovember 14, 2020 at 3:51 PM

    More replica watchesthan the home of the legendary Royal Oak,replica audemars piguet Royal Oak Offshore, and Renaud et Papi’s grand complications, Audemars Piguet is the largest Swiss watchmaking brand still owned and guided by members of the original founding families.

    ReplyDelete

Subscribe to: Post Comments (Atom)