博客
关于我
MongoDB用户管理
阅读量:151 次
发布时间:2019-02-27

本文共 4298 字,大约阅读时间需要 14 分钟。

用户管理范围

  • 用户名、密码
  • 角色(权限:只读,读写,超管等等)
  • 范围(对哪些库有执行权限)

启用认证

use admin> db.createUser({user:"root",pwd:"root",roles:[{role:"root",db:"admin"}]})Successfully added user: {	"user" : "root",	"roles" : [		{			"role" : "root",			"db" : "admin"		}	]}> db.auth("root","root")1

认证用户创建成功后退出修改mongodb配置文件然后重启

在行尾加入

vim mongod.confsecurity:    authorization: enabled
  • 验证认证用户是否创建成功
    未输入验证用户
mongo> show dbs> show tablesWarning: unable to run listCollections, attempting to approximate collection names by parsing connectionStatus> exit

输入验证用户

[root@localhost conf]# mongo -uroot -proot admin> show dbsadmin   0.000GBconfig  0.000GBlocal   0.000GB
  • 创建一个对test库的只读用户test-read
    用root登录mongodb
> use testswitched to db test> db.createUser({user:"test-read",pwd:"123456",roles:[{role:"read",db:"test"}]})Successfully added user: {	"user" : "test-read",	"roles" : [		{			"role" : "read",			"db" : "test"		}	]}
  • 验证test-read用户是否创建成功
> db.system.users.find(){ "_id" : "admin.root", "userId" : UUID("d0781985-a9ff-454a-bc60-cd4ac45902f8"), "user" : "root", "db" : "admin", "credentials" : { "SCRAM-SHA-1" : { "iterationCount" : 10000, "salt" : "PuLTpRJAnK2MdVwBj5KAlw==", "storedKey" : "tejQhliRyhTn+XDwTSO8vfzZJJY=", "serverKey" : "yRw+MD/ryymGrgGbsDNmnt9yYoE=" }, "SCRAM-SHA-256" : { "iterationCount" : 15000, "salt" : "/EeWxFocy/cxdnrD+XZ0Tx+z/FRnZv8ybpJdUg==", "storedKey" : "WjMLjd7zHwIKbyEiM/iaBsOWv75jRPUoN3m/tOONLFo=", "serverKey" : "UcYveQMY/k4TXhr10xBy+voU21kt4Mu3G52BrHDTdsE=" } }, "roles" : [ { "role" : "root", "db" : "admin" } ] }{ "_id" : "test.test-read", "userId" : UUID("6fad7d9d-9987-43a0-8fe5-63937251d9f7"), "user" : "test-read", "db" : "test", "credentials" : { "SCRAM-SHA-1" : { "iterationCount" : 10000, "salt" : "iiJEuG/mHAnhTjIpGY9jKw==", "storedKey" : "1KVPCa1Qv9rsWE0NHj5GFAxoz3E=", "serverKey" : "yiOmZzS5Y/y/mSyBI2dbjxgVjnI=" }, "SCRAM-SHA-256" : { "iterationCount" : 15000, "salt" : "BiE7N07G0pBdCkThO65OpZTiOoHkLn/tD1aDZg==", "storedKey" : "n+H+kStdlin08wFrqQn2Ab/iqDvYNzMIs2bRnkrVkO8=", "serverKey" : "oEftyIyv8RobzLlHtOPilWusXQdhu1hbnrZgZ2xYh/U=" } }, "roles" : [ { "role" : "read", "db" : "test" } ] }
  • 以test-read用户登录并创建一个test集合
mongo -u"test-read" -p123456 test > db.test.insert({name:"mongo"})WriteCommandError({	"ok" : 0,	"errmsg" : "not authorized on test to execute command { insert: \"test\", ordered: true, lsid: { id: UUID(\"8c9e94c8-d9bf-4378-b9eb-2f811162c374\") }, $db: \"test\" }",	"code" : 13,	"codeName" : "Unauthorized"})
  • 创建一个test库的读写用户
    还是以root用户登录
> use testswitched to db test> db.createUser({user:"test-rw",pwd:"123456",roles:[{role:"readWrite",db:"test"}]})Successfully added user: {	"user" : "test-rw",	"roles" : [		{			"role" : "readWrite",			"db" : "test"		}	]}
  • 退出以test-rw用户登录创建test集合
> db.test.insert({name:"mongo"})WriteResult({ "nInserted" : 1 })> show tablestest> db.test.find(){ "_id" : ObjectId("5f0bd0c96409669331de55cd"), "name" : "mongo" }
  • 再以test-read用户登录查看是否可读
> show tablestest> db.test.find(){ "_id" : ObjectId("5f0bd0c96409669331de55cd"), "name" : "mongo" }
  • 删除用户
    还是以root用户登录
> use testswitched to db test> db.dropUser("test-read")true> use adminswitched to db admin> db.system.users.find(){ "_id" : "admin.root", "userId" : UUID("d0781985-a9ff-454a-bc60-cd4ac45902f8"), "user" : "root", "db" : "admin", "credentials" : { "SCRAM-SHA-1" : { "iterationCount" : 10000, "salt" : "PuLTpRJAnK2MdVwBj5KAlw==", "storedKey" : "tejQhliRyhTn+XDwTSO8vfzZJJY=", "serverKey" : "yRw+MD/ryymGrgGbsDNmnt9yYoE=" }, "SCRAM-SHA-256" : { "iterationCount" : 15000, "salt" : "/EeWxFocy/cxdnrD+XZ0Tx+z/FRnZv8ybpJdUg==", "storedKey" : "WjMLjd7zHwIKbyEiM/iaBsOWv75jRPUoN3m/tOONLFo=", "serverKey" : "UcYveQMY/k4TXhr10xBy+voU21kt4Mu3G52BrHDTdsE=" } }, "roles" : [ { "role" : "root", "db" : "admin" } ] }{ "_id" : "test.test-rw", "userId" : UUID("87ced292-7002-4aa8-97f4-51fe2b2092eb"), "user" : "test-rw", "db" : "test", "credentials" : { "SCRAM-SHA-1" : { "iterationCount" : 10000, "salt" : "fm8yHKrzyzjZYu9z+zoKSA==", "storedKey" : "IGTHdZqX323gaeSubUnArB1CCfY=", "serverKey" : "3CfFP2T4LSxkuoQ43aJQbQiPQwA=" }, "SCRAM-SHA-256" : { "iterationCount" : 15000, "salt" : "sBhYrXGUIhP5M9CtTAiDrsR1Ph+B1RxIlC7xVw==", "storedKey" : "Ml88HbnDzTtt9swZZamPAL9TIWOeKIj7gdoLrTHhh54=", "serverKey" : "AFxnf9A3rQlmr8O5y3sTGID8aMAiHpteOOuFLgVNpP0=" } }, "roles" : [ { "role" : "readWrite", "db" : "test" } ] }

转载地址:http://wgpb.baihongyu.com/

你可能感兴趣的文章
MySQL5.7.18主从复制搭建(一主一从)
查看>>
MySQL5.7.19-win64安装启动
查看>>
mysql5.7.19安装图解_mysql5.7.19 winx64解压缩版安装配置教程
查看>>
MySQL5.7.37windows解压版的安装使用
查看>>
mysql5.7免费下载地址
查看>>
mysql5.7命令总结
查看>>
mysql5.7安装
查看>>
mysql5.7性能调优my.ini
查看>>
MySQL5.7新增Performance Schema表
查看>>
Mysql5.7深入学习 1.MySQL 5.7 中的新增功能
查看>>
Webpack 之 basic chunk graph
查看>>
Mysql5.7版本单机版my.cnf配置文件
查看>>
mysql5.7的安装和Navicat的安装
查看>>
mysql5.7示例数据库_Linux MySQL5.7多实例数据库配置
查看>>
Mysql8 数据库安装及主从配置 | Spring Cloud 2
查看>>
mysql8 配置文件配置group 问题 sql语句group不能使用报错解决 mysql8.X版本的my.cnf配置文件 my.cnf文件 能够使用的my.cnf配置文件
查看>>
MySQL8.0.29启动报错Different lower_case_table_names settings for server (‘0‘) and data dictionary (‘1‘)
查看>>
MYSQL8.0以上忘记root密码
查看>>
Mysql8.0以上重置初始密码的方法
查看>>
mysql8.0新特性-自增变量的持久化
查看>>
喝酒易醉,品茶养心,人生如梦,品茶悟道,何以解忧?唯有杜康!-- 愿君每日到此一游!
当前时间: 2025-07-21 14:40:47   当前IP: 10.2.225.244   联系邮箱:javaeecc@qq.com     Copyright © 2020 - 2025 baihongyu.com 京ICP备2021015314号-2