BugZero | MongoDB BugID 95314 - reIndex command fails with user-defined roles

MongoDB - Defect ID: 95314

reIndex command fails with user-defined roles

MongoDB - Defect ID: 95314

reIndex command fails with user-defined roles

Last updated on July 11th, 2016

BugZero Risk Score
6.2 Medium

Overall: 6.2

Severity: 6.4

Community: 5.5

Lifecycle: 9.1

What is the BugZero Risk Score?

MongoDB Integration

Learn more about where this data comes from

MongoDB Integration

Learn more

Bug Scrub Advisor

Streamline upgrades with automated vendor bug scrubs

Bug Scrub Advisor

Learn more

BugZero Enterprise

Wish you caught this bug sooner? Get proactive today.

BugZero Enterprise

Learn more

Bug Details

Priority: Major - P3
Status: Closed

Description

Info

Create a user with a single role that has the following privilege: { resource: {db: "test", collection: "x"}, actions: ["reIndex"] } If the user tries to reIndex collection "x", the command fails as shown below: > db.runCommand({reIndex: "x"}) { "nIndexesWas" : 1, "msg" : "indexes dropped for collection", "errmsg" : "exception: invalid ns to index", "code" : 10096, "ok" : 0 } On the other hand, if the user has the dbAdmin role, then the command works just fine: > db.x.save({}) > db.runCommand({ ... createUser: "testUser", ... pwd: "password", ... roles: ["dbAdmin"] ... }) { "ok" : 1 } > db.auth("testUser", "password") 1 > db.runCommand({reIndex: "x"}) { "nIndexesWas" : 1, "msg" : "indexes dropped for collection", "nIndexes" : 1, "indexes" : [ { "key" : { "_id" : 1 }, "ns" : "test.x", "name" : "_id_" } ], "ok" : 1 }

Top User Comments

david.storch commented on Thu, 24 Oct 2013 14:44:35 +0000: Yup, this was fixed by revision 2b16aca77cbd4486d780e21636b7043733e12765. Resolving. spencer commented on Wed, 23 Oct 2013 23:07:39 +0000: david.storch I cannot reproduce this. I think it may have been fixed by https://github.com/mongodb/mongo/commit/2b16aca77cbd4486d780e21636b7043733e12765. Can you re-test and see if you still see this?

Steps to Reproduce

Change history

No changes to display

Links

Relevant Products

Click on a version to see all relevant bugs

Affected versions:No known affected versions

Fixed versions: 2.5.4

Relevant Products

Click on a version to see all relevant bugs

Affected versions:No known affected versions

Fixed versions: 2.5.4

Top MongoDB Defects

7.0Defect ID: 3266121
Error message when adding a node to the shard cluster: "{"error":{"code":26,"codeName":"NamespaceNotFound","errmsg":"Unable to retrieve storageStats in $collStats stage :: caused by :: Collection [local.oplog.rs] not found."},"$db":"local"}}}"
5.5Defect ID: 3277022
CollectionCatalog can't replace a collection with a view in the same WriteUnitOfWork
5.5Defect ID: 3269537
Remove unnecessary balancer configuration refresh that may crash the process during addShard
5.4Defect ID: 3263496
Fix legacy timeseries namespace translation in findAndModify explain command
5.4Defect ID: 3287683
[v6.0] Ensure update fails on primary when doc_diff::computeDiff() produces empty sub-diffs

Ready to prevent the next vendor outage?

Get a demo

MongoDB - Defect ID: 95314

reIndex command fails with user-defined roles

MongoDB - Defect ID: 95314

reIndex command fails with user-defined roles

Last updated on July 11th, 2016

BugZero Risk Score6.2 Medium

Bug Details

Info

Top User Comments

Steps to Reproduce

Links

Top MongoDB Defects

Ready to prevent the next vendor outage?

BugZero Risk Score
6.2 Medium