Search icon CANCEL
Arrow left icon
Explore Products
Best Sellers
New Releases
Books
Videos
Audiobooks
Learning Hub
Conferences
Free Learning
Arrow right icon
Arrow up icon
GO TO TOP
Learn MongoDB 4.x

You're reading from   Learn MongoDB 4.x A guide to understanding MongoDB development and administration for NoSQL developers

Arrow left icon
Product type Paperback
Published in Sep 2020
Publisher Packt
ISBN-13 9781789619386
Length 610 pages
Edition 1st Edition
Tools
Concepts
Arrow right icon
Author (1):
Arrow left icon
Doug Bierer Doug Bierer
Author Profile Icon Doug Bierer
Doug Bierer
Arrow right icon
View More author details
Toc

Table of Contents (22) Chapters Close

Preface 1. Section 1: Essentials
2. Introducing MongoDB 4.x FREE CHAPTER 3. Setting Up MongoDB 4.x 4. Essential MongoDB Administration Techniques 5. Section 2: Building a Database-Driven Web Application
6. Fundamentals of Database Design 7. Mission-Critical MongoDB Database Tasks 8. Using AJAX and REST to Build a Database-Driven Website 9. Section 3: Digging Deeper
10. Advanced MongoDB Database Design 11. Using Documents with Embedded Lists and Objects 12. Handling Complex Queries in MongoDB 13. Section 4: Replication, Sharding, and Security in a Financial Environment
14. Working with Complex Documents Across Collections 15. Administering MongoDB Security 16. Developing in a Secured Environment 17. Deploying a Replica Set 18. Replica Set Runtime Management and Development 19. Deploying a Sharded Cluster 20. Sharded Cluster Management and Development 21. Other Books You May Enjoy

Creating a user with rights on a single database

For our first scenario, let's say that the management appoints an admin to run financial reports on the biglittle database. However, the database server also hosts another database to which this admin should not have rights. Here is an example of how the rights might be assigned:

bgReader = {
user : "bgReader",
pwd : "password",
roles : [ { role:"read", db:"biglittle" } ],
mechanisms: [ "SCRAM-SHA-256" ]
}
db.createUser(bgReader);

This user can now authenticate to the server using the mongo shell, specifying the -u and -p parameters. In addition the user needs to identify the authentication source using the --authenticationDatabase parameter. As you can see from the screenshot shown here, the new user, bgReader, can access the biglittle database and issue the findOne() command:

However, if the same user attempts to insert something into the database, the operation fails and...

lock icon The rest of the chapter is locked
Register for a free Packt account to unlock a world of extra content!
A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.
Unlock this book and the full library FREE for 7 days
Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of
Renews at $19.99/month. Cancel anytime