New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
MongoDB privilege required for find operation on db.system.profile #188
Comments
Hi @bmontuelle - thanks for submitting the issue. Given that I just saw #187 go through, I'm thinking that the |
Hi ! Thanks for the info, it may relate here. We are not using suffixed collection name. I can try adding a suffix-builder to see but if not sure it will change something for this.
which is performing a |
Yes I can confirm we pass in this method with I will try to provide a workaround, I dont think there is a need for watching system collections here |
Fixed in |
Wonderful ! Many thanks |
Good morning,
We are building the project on top of Lagom framework
"com.lightbend.lagom" % "lagom-sbt-plugin" % "1.4.0-M2"
Built our connector for lagom ReadSide event handlers and configured akka persistence with this plugin to persist akka journal and realtime on MongoDB with ReactiveMongo
"com.github.scullxbones" %% "akka-persistence-mongo-rxmongo" % "2.0.4"
Other Reactive Mongo usage are in lagom read side processors, updating entity read side in response to event. Its very similar to typical DAO use : insert, update, finds
The MongoDB Administrator had to allow the application to pass
find
queries on<db_name>.system.profile
. He says cannot let this for the production environment, and want to stay with the default MongoDB profile "readWrite"The problem occurs only when mongoDB server has operationProfiling enabled, in slowOp mode with this in mongo configuration file
When this profiling mode is selected the reactive mongo connection fails because of an authentication
DatabaseException['not authorized for query on xxxxx.system.profile' (code = 13)]
If we allow just the 'find' operation on the system.profile collection it works fine.I cannot trace back any query to this collection in ReactiveMongo, nor in akka-persistence-mongo sources.
Do anyone of you know of such behavior and could help on this ?
Best regards
Benoit
The text was updated successfully, but these errors were encountered: