热门标签
热门文章
- 1实现房价预测及计算过程中相关实验数据可视化_真实数据和预测数据对比图
- 2Spark join问题_spark full join
- 3【图解物联网】第8章 物联网与机器人_rapyuta计算引擎
- 4微信小程序简单实现购物车功能_微信小程序购物车页面
- 5Python迭代器
- 6SQL面试题练习 —— 查询每个产品每年总销售额
- 7学生管理系统(面向过程)_如何用面向过程的方法写一个简易的学生信息管理系统
- 8阿里通义千问API(Java)后端Springboot_springcloudalibaba整合通义千问
- 9机器学习-支持向量机-解决兵王问题(附matlab程序)_king-rook vs king机器学习
- 10Hadoop - YARN_hadoop yarn
当前位置: article > 正文
MongoDB之角色与权限及创建用户与授权操作详解_mongodb创建用户密码并授权
作者:一键难忘520 | 2024-06-27 09:54:00
赞
踩
mongodb创建用户密码并授权
MongoDB之角色与权限及创建用户与授权操作详解
1. 角色与权限
1. 角色分类
| 角色分类 | 角色分类中的具体角色 |
|---|---|
| 数据库用户角色 | read、readWrite |
| 数据库管理角色 | dbAdmin、dbOwner、userAdmin |
| 集群管理角色 | clusterAdmin、clusterManager、clusterMonitor、hostManage |
| 数据库备份、恢复角色 | backup、restore |
| 所有数据库角色 | readAnyDatabase、readWriteAnyDatabase、userAdminAnyDatabase、dbAdminAnyDatabase |
| 超级用户角色 | root |
| 内部角色 | __system |
2. 权限说明
| 权限 | 说明 |
|---|---|
| read | 允许用户读取指定数据库 |
| readWrite | 允许用户读写指定数据库 |
| dbAdmin | 允许用户在指定数据库中执行管理函数,如索引创建、删除、查看统计或访问system.profile |
| userAdmin | 允许用户向system.users集合写入,可以在指定数据库中创建、删除和管理用户 |
| clusterAdmin | 必须在admin数据库中定义,赋予用户所有分片和复制集相关函数的管理权限 |
| readAnyDatabase | 必须在admin数据库中定义,赋予用户所有数据库的读权限 |
| readWriteAnyDatabase | 必须在admin数据库中定义,赋予用户所有数据库的读写权限 |
| userAdminAnyDatabase | 必须在admin数据库中定义,赋予用户所有数据库的userAdmin权限 |
| dbAdminAnyDatabase | 必须在admin数据库中定义,赋予用户所有数据库的dbAdmin权限 |
| root | 必须在admin数据库中定义,超级账号,超级权限 |
2. MongDB创建用户及删除用户
1. 创建用户
use admin db.createUser({ "user":"用户名", "pwd":"密码", "roles":[ # 角色可配多个 {role:"角色",db:"所属数据库"} ], # 用户信息,可选 coustomData:{ name:"jinshengyuan", email:"xxx@xx.com" } }) # 创建一个不受访问限制的用户, db.createUser({ user:"wei", pwd:"wei", roles:["root"] })
- 1
- 2
- 3
- 4
- 5
- 6
- 7
- 8
- 9
- 10
- 11
- 12
- 13
- 14
- 15
- 16
- 17
- 18
- 19
- 20
2. 查看用户信息
use admin
show users
db.system.users.find()
db.system.users.pretty()
db.runCommand({userInfo:"用户名"})
- 1
- 2
- 3
- 4
- 5
3. 修改用户密码
use amdin
db.changeUserPassword("用户名","新密码")
# 修改用户密码及用户信息
db.runCommand({updateUser:"用户名",pwd:"新密码",customData:{age:22}})
- 1
- 2
- 3
- 4
3. db.runCommand创建用户与授权
可通过
db.runCommand命令行来创建/修改用户与授予相关权限的操作
1. 创建用户
use admin db.runCommand({ "createUser" : "yuan", "pwd" : "yuan", "customData" : { }, "roles" : [ { "role" : "__queryableBackup", "db" : "admin" }, { "role" : "__system", "db" : "admin" }, { "role" : "backup", "db" : "admin" }, { "role" : "clusterAdmin", "db" : "admin" }, { "role" : "clusterManager", "db" : "admin" }, { "role" : "clusterMonitor", "db" : "admin" }, { "role" : "dbAdmin", "db" : "admin" }, { "role" : "dbAdminAnyDatabase", "db" : "admin" }, { "role" : "dbOwner", "db" : "admin" }, { "role" : "enableSharding", "db" : "admin" }, { "role" : "hostManager", "db" : "admin" }, { "role" : "read", "db" : "admin" }, { "role" : "readAnyDatabase", "db" : "admin" }, { "role" : "readWrite", "db" : "admin" }, { "role" : "readWriteAnyDatabase", "db" : "admin" }, { "role" : "restore", "db" : "admin" }, { "role" : "root", "db" : "admin" }, { "role" : "userAdmin", "db" : "admin" }, { "role" : "userAdminAnyDatabase", "db" : "admin" } ] });
- 1
- 2
- 3
- 4
- 5
- 6
- 7
- 8
- 9
- 10
- 11
- 12
- 13
- 14
- 15
- 16
- 17
- 18
- 19
- 20
- 21
- 22
- 23
- 24
- 25
- 26
- 27
- 28
- 29
- 30
- 31
- 32
- 33
- 34
- 35
- 36
- 37
- 38
- 39
- 40
- 41
- 42
- 43
- 44
- 45
- 46
- 47
- 48
- 49
- 50
- 51
- 52
- 53
- 54
- 55
- 56
- 57
- 58
- 59
- 60
- 61
- 62
- 63
- 64
- 65
- 66
- 67
- 68
- 69
- 70
- 71
- 72
- 73
- 74
- 75
- 76
- 77
- 78
- 79
- 80
- 81
- 82
- 83
- 84
- 85
- 86
2. 更改用户权限
use admin db.runCommand({ "updateUser" : "yuan", "customData" : { }, "roles" : [ { "role" : "readWrite", "db" : "yuan" }, { "role" : "__queryableBackup", "db" : "admin" }, { "role" : "__system", "db" : "admin" }, { "role" : "backup", "db" : "admin" }, { "role" : "clusterAdmin", "db" : "admin" }, { "role" : "clusterManager", "db" : "admin" }, { "role" : "clusterMonitor", "db" : "admin" }, { "role" : "dbAdmin", "db" : "admin" }, { "role" : "dbAdminAnyDatabase", "db" : "admin" }, { "role" : "dbOwner", "db" : "admin" }, { "role" : "enableSharding", "db" : "admin" }, { "role" : "hostManager", "db" : "admin" }, { "role" : "read", "db" : "admin" }, { "role" : "readAnyDatabase", "db" : "admin" }, { "role" : "readWrite", "db" : "admin" }, { "role" : "readWriteAnyDatabase", "db" : "admin" }, { "role" : "restore", "db" : "admin" }, { "role" : "root", "db" : "admin" }, { "role" : "userAdmin", "db" : "admin" }, { "role" : "userAdminAnyDatabase", "db" : "admin" } ] });
- 1
- 2
- 3
- 4
- 5
- 6
- 7
- 8
- 9
- 10
- 11
- 12
- 13
- 14
- 15
- 16
- 17
- 18
- 19
- 20
- 21
- 22
- 23
- 24
- 25
- 26
- 27
- 28
- 29
- 30
- 31
- 32
- 33
- 34
- 35
- 36
- 37
- 38
- 39
- 40
- 41
- 42
- 43
- 44
- 45
- 46
- 47
- 48
- 49
- 50
- 51
- 52
- 53
- 54
- 55
- 56
- 57
- 58
- 59
- 60
- 61
- 62
- 63
- 64
- 65
- 66
- 67
- 68
- 69
- 70
- 71
- 72
- 73
- 74
- 75
- 76
- 77
- 78
- 79
- 80
- 81
- 82
- 83
- 84
- 85
- 86
- 87
- 88
- 89
声明:本文内容由网友自发贡献,不代表【wpsshop博客】立场,版权归原作者所有,本站不承担相应法律责任。如您发现有侵权的内容,请联系我们。转载请注明出处:https://www.wpsshop.cn/w/一键难忘520/article/detail/762114
推荐阅读
相关标签
