The content of this article is an introduction to users and permissions in mongoDB. It has a good reference value and I hope it can help friends in need.
For databases, users and permissions are a very important part, because they involve security. So what are the users and permissions of mongoDB?
The mongoDB version used in this article is 3.6, and the operating system is windows.
Due to space limitations, this article will not introduce the process from downloading to installing the database. Regarding installation tutorials, there are a large number of tutorials on the Internet. You can follow these tutorials to install and run it. This article will focus on the users and permissions part of mongoDB.
For mongoDB, it is divided into server and client.
In the installation directory of the windows environment, double-click to open mongod.exe to start the mongoDB service.
When the service is started, you can double-click mongo.exe to open the client to connect to the mongoDB service.
After mongoDB is installed, if you directly use mongod.exe to start the service, the default is not to enable authorization mode, if your mongoDB does not enable authorization mode , then anyone can log in to the mongoDB server without a username and password, and do whatever they want with your database, or even directly delete the database and run away. Therefore, in a production environment, please make sure you remember to turn on authorization mode.
So, how to enable authorization mode?
Open cmd, enter the bin directory of the installation directory, and execute the following command:
mongod --auth --port 27017 --dbpath /data/db
After turning on the authorization mode, open mongo.exe, and under the admin database, execute show dbs, at this time, the database will report an error, reminding you that there is no authorization. As follows:
First, open the mongoDB service in
non-authorized mode.
mongod --port 27017 --dbpath /data/db
use admin
db.createUser(
{
user: "larry",
pwd: "123456",
roles: [ { role: "userAdminAnyDatabase", db: "admin" } ]
}
)First, close all mongo shell windows above.
Then open the mongoDB service in
authorization mode.
mongod --auth --port 27017 --dbpath /data/db
db.auth().
The result returns 1, indicating that the administrator larry logged in successfully.
Next, use this administrator to create a normal user moddx for the photo_app database, and specify its permissions as readWrite.
use photo_app
db.createUser(
{
user: "moddx",
pwd: "123456",
roles: [{ role: "readWrite", db: "photo_app"}]
}
)admin account, and then execute the following command:
db.system.users.find().pretty()
show users
The command to delete ordinary user moddx is as follows:
db.dropUser("moddx", {w: "majority", wtimeout: 5000})db.revokeRolesFromUser(
"moddx",
[
{ role: "readWrite", db: "photo_app" }
]
)use photo_app
db.grantRolesToUser(
"moddx",
[ "readWrite" , { role: "read", db: "demodb" } ],
{ w: "majority" , wtimeout: 4000 }
)use photo_app
db.changeUserPassword("moddx", "newpwd")[MongoDB] mongodb and php php mongodb update php connection mongodb php mongodb not authorize
MongoDB Journey (2) Basic Operations (MongoDB Javascript Shell)
The above is the detailed content of Introduction to users and permissions in mongoDB. For more information, please follow other related articles on the PHP Chinese website!
The difference between mongodb and mysql
mongodb startup command
How to delete data in MongoDB
Commonly used database software
What are the application areas of mongodb?
Which one has faster reading speed, mongodb or redis?
How to completely delete mongodb if the installation fails
Mongodb and mysql are easy to use and recommended
![[Web front-end] Node.js quick start](https://img.php.cn/upload/course/000/000/067/662b5d34ba7c0227.png)
