MongoDB grants access to data and commands through role-based authorization. MongoDB provides built-in roles that grant the different levels of access commonly needed in a database system.
角色授予在定义的资源上执行一系列动作的特权。给定角色适用于定义它的数据库,并且可以授予集合粒度级别的访问权限。
MongoDB 的每个内置角色都为该角色的数据库中的所有非系统集合在数据库级别定义访问权限,并为所有系统集合在集合级别定义访问权限。
系统集合包括以下位置的集合:
<database>.system.*namespacelocal.replset.*副本集命名空间
非系统集合是指不在上一个列表中的命名空间中的集合。
Although MongoDB Atlas database users have different built-in roles than self-hosted deployment users, MongoDB builds the built-in roles for each type of deployment from the same set of privilege actions.
Use the selector at the top of the page to choose your deployment type and see the available built-in roles.