Oriol del Rio
Reputation: 709
My read-only user is able to write
I'm using MongoDB 3.0.7. I have a database called bravegoat and a read-only user called bravegoat-r.
I connect via shell:
mongo localhost:27017/bravegoat -u bravegoat-r -p mypassword
I switch to my database:
use bravegoat;
And I run:
db.runCommand({connectionStatus : 1})
Which outputs:
{
"authInfo" : {
"authenticatedUsers" : [
{
"user" : "bravegoat-r",
"db" : "bravegoat"
}
],
"authenticatedUserRoles" : [
{
"role" : "read",
"db" : "bravegoat"
}
]
},
"ok" : 1
}
Only read role, so it looks fine, but when I invoke .save(), my user can insert data. I've read few pages about creating read-only users and I'm not able to see my problem. I'm starting to think it might be a bug in my version.
Upvotes: 5
Views: 1249
Answers (1)
Michaël Perrin
Reputation: 6268
You have to enable client access control by doing the following:
- Edit the
/etc/mongod.conffile - Add the following lines
security:
authorization: enabled
- Restart MongoDB:
sudo service mongodb restart
Upvotes: 2
Related Questions
- MongoDB Catalina Read and Write
- How to create user with read-write access for specific DB only in MongoDB?
- Mongo fails on read-only permissions for a directory owned by the executing user
- Mongodb user permission read only issue
- Mongo user privilege to read and write to any database
- Make Database as ReadOnly in Mongo
- Add simple read write user in mongo 3.4.1
- Unauthorized to Write to MongoDB
- Properly set up a read only user in MongoDB 3.0?
- MongoDB C# driver WriteConcernException Unauthorized on writes for readOnly=false user