博客
关于我
MongoDB用户管理
阅读量:151 次
发布时间:2019-02-27

本文共 4298 字,大约阅读时间需要 14 分钟。

用户管理范围

  • 用户名、密码
  • 角色(权限:只读,读写,超管等等)
  • 范围(对哪些库有执行权限)

启用认证

use admin> db.createUser({user:"root",pwd:"root",roles:[{role:"root",db:"admin"}]})Successfully added user: {	"user" : "root",	"roles" : [		{			"role" : "root",			"db" : "admin"		}	]}> db.auth("root","root")1

认证用户创建成功后退出修改mongodb配置文件然后重启

在行尾加入

vim mongod.confsecurity:    authorization: enabled
  • 验证认证用户是否创建成功
    未输入验证用户
mongo> show dbs> show tablesWarning: unable to run listCollections, attempting to approximate collection names by parsing connectionStatus> exit

输入验证用户

[root@localhost conf]# mongo -uroot -proot admin> show dbsadmin   0.000GBconfig  0.000GBlocal   0.000GB
  • 创建一个对test库的只读用户test-read
    用root登录mongodb
> use testswitched to db test> db.createUser({user:"test-read",pwd:"123456",roles:[{role:"read",db:"test"}]})Successfully added user: {	"user" : "test-read",	"roles" : [		{			"role" : "read",			"db" : "test"		}	]}
  • 验证test-read用户是否创建成功
> db.system.users.find(){ "_id" : "admin.root", "userId" : UUID("d0781985-a9ff-454a-bc60-cd4ac45902f8"), "user" : "root", "db" : "admin", "credentials" : { "SCRAM-SHA-1" : { "iterationCount" : 10000, "salt" : "PuLTpRJAnK2MdVwBj5KAlw==", "storedKey" : "tejQhliRyhTn+XDwTSO8vfzZJJY=", "serverKey" : "yRw+MD/ryymGrgGbsDNmnt9yYoE=" }, "SCRAM-SHA-256" : { "iterationCount" : 15000, "salt" : "/EeWxFocy/cxdnrD+XZ0Tx+z/FRnZv8ybpJdUg==", "storedKey" : "WjMLjd7zHwIKbyEiM/iaBsOWv75jRPUoN3m/tOONLFo=", "serverKey" : "UcYveQMY/k4TXhr10xBy+voU21kt4Mu3G52BrHDTdsE=" } }, "roles" : [ { "role" : "root", "db" : "admin" } ] }{ "_id" : "test.test-read", "userId" : UUID("6fad7d9d-9987-43a0-8fe5-63937251d9f7"), "user" : "test-read", "db" : "test", "credentials" : { "SCRAM-SHA-1" : { "iterationCount" : 10000, "salt" : "iiJEuG/mHAnhTjIpGY9jKw==", "storedKey" : "1KVPCa1Qv9rsWE0NHj5GFAxoz3E=", "serverKey" : "yiOmZzS5Y/y/mSyBI2dbjxgVjnI=" }, "SCRAM-SHA-256" : { "iterationCount" : 15000, "salt" : "BiE7N07G0pBdCkThO65OpZTiOoHkLn/tD1aDZg==", "storedKey" : "n+H+kStdlin08wFrqQn2Ab/iqDvYNzMIs2bRnkrVkO8=", "serverKey" : "oEftyIyv8RobzLlHtOPilWusXQdhu1hbnrZgZ2xYh/U=" } }, "roles" : [ { "role" : "read", "db" : "test" } ] }
  • 以test-read用户登录并创建一个test集合
mongo -u"test-read" -p123456 test > db.test.insert({name:"mongo"})WriteCommandError({	"ok" : 0,	"errmsg" : "not authorized on test to execute command { insert: \"test\", ordered: true, lsid: { id: UUID(\"8c9e94c8-d9bf-4378-b9eb-2f811162c374\") }, $db: \"test\" }",	"code" : 13,	"codeName" : "Unauthorized"})
  • 创建一个test库的读写用户
    还是以root用户登录
> use testswitched to db test> db.createUser({user:"test-rw",pwd:"123456",roles:[{role:"readWrite",db:"test"}]})Successfully added user: {	"user" : "test-rw",	"roles" : [		{			"role" : "readWrite",			"db" : "test"		}	]}
  • 退出以test-rw用户登录创建test集合
> db.test.insert({name:"mongo"})WriteResult({ "nInserted" : 1 })> show tablestest> db.test.find(){ "_id" : ObjectId("5f0bd0c96409669331de55cd"), "name" : "mongo" }
  • 再以test-read用户登录查看是否可读
> show tablestest> db.test.find(){ "_id" : ObjectId("5f0bd0c96409669331de55cd"), "name" : "mongo" }
  • 删除用户
    还是以root用户登录
> use testswitched to db test> db.dropUser("test-read")true> use adminswitched to db admin> db.system.users.find(){ "_id" : "admin.root", "userId" : UUID("d0781985-a9ff-454a-bc60-cd4ac45902f8"), "user" : "root", "db" : "admin", "credentials" : { "SCRAM-SHA-1" : { "iterationCount" : 10000, "salt" : "PuLTpRJAnK2MdVwBj5KAlw==", "storedKey" : "tejQhliRyhTn+XDwTSO8vfzZJJY=", "serverKey" : "yRw+MD/ryymGrgGbsDNmnt9yYoE=" }, "SCRAM-SHA-256" : { "iterationCount" : 15000, "salt" : "/EeWxFocy/cxdnrD+XZ0Tx+z/FRnZv8ybpJdUg==", "storedKey" : "WjMLjd7zHwIKbyEiM/iaBsOWv75jRPUoN3m/tOONLFo=", "serverKey" : "UcYveQMY/k4TXhr10xBy+voU21kt4Mu3G52BrHDTdsE=" } }, "roles" : [ { "role" : "root", "db" : "admin" } ] }{ "_id" : "test.test-rw", "userId" : UUID("87ced292-7002-4aa8-97f4-51fe2b2092eb"), "user" : "test-rw", "db" : "test", "credentials" : { "SCRAM-SHA-1" : { "iterationCount" : 10000, "salt" : "fm8yHKrzyzjZYu9z+zoKSA==", "storedKey" : "IGTHdZqX323gaeSubUnArB1CCfY=", "serverKey" : "3CfFP2T4LSxkuoQ43aJQbQiPQwA=" }, "SCRAM-SHA-256" : { "iterationCount" : 15000, "salt" : "sBhYrXGUIhP5M9CtTAiDrsR1Ph+B1RxIlC7xVw==", "storedKey" : "Ml88HbnDzTtt9swZZamPAL9TIWOeKIj7gdoLrTHhh54=", "serverKey" : "AFxnf9A3rQlmr8O5y3sTGID8aMAiHpteOOuFLgVNpP0=" } }, "roles" : [ { "role" : "readWrite", "db" : "test" } ] }

转载地址:http://wgpb.baihongyu.com/

你可能感兴趣的文章
mysql case when 乱码_Mysql CASE WHEN 用法
查看>>
Multicast1
查看>>
MySQL Cluster 7.0.36 发布
查看>>
Multimodal Unsupervised Image-to-Image Translation多通道无监督图像翻译
查看>>
MySQL Cluster与MGR集群实战
查看>>
multipart/form-data与application/octet-stream的区别、application/x-www-form-urlencoded
查看>>
mysql cmake 报错,MySQL云服务器应用及cmake报错解决办法
查看>>
Multiple websites on single instance of IIS
查看>>
mysql CONCAT()函数拼接有NULL
查看>>
multiprocessing.Manager 嵌套共享对象不适用于队列
查看>>
multiprocessing.pool.map 和带有两个参数的函数
查看>>
MYSQL CONCAT函数
查看>>
multiprocessing.Pool:map_async 和 imap 有什么区别?
查看>>
MySQL Connector/Net 句柄泄露
查看>>
multiprocessor(中)
查看>>
mysql CPU使用率过高的一次处理经历
查看>>
Multisim中555定时器使用技巧
查看>>
MySQL CRUD 数据表基础操作实战
查看>>
multisim变压器反馈式_穿过隔离栅供电:认识隔离式直流/ 直流偏置电源
查看>>
mysql csv import meets charset
查看>>
喝酒易醉,品茶养心,人生如梦,品茶悟道,何以解忧?唯有杜康!-- 愿君每日到此一游!
当前时间: 2025-07-18 04:13:07   当前IP: 10.2.166.195   联系邮箱:javaeecc@qq.com     Copyright © 2020 - 2025 baihongyu.com 京ICP备2021015314号-2