Managed MongoDB User Access Controls | Voters

Managed MongoDB User Access Controls

Mike Bessette

Creating users only from the "Users & Databases" page, without the option to modify roles is...less than ideal. At the very least my doadmin user should default with userAdminAnyDatabase role so I am able to implement proper RBAC for my application users.

March 22, 2022

Whitney Jutzin

Thank you so much for taking time to raise this product improvement idea to us! Though we are still working on the true ask here, we wanted to let you know that we have made some scoped access improvements that we think you'll be interested in trying out. You can learn more about it here: https://docs.digitalocean.com/reference/api/create-personal-access-token/ We will continue to work on the larger request in this Idea and will update you as soon as we have more information to share.

Kevin Yun

READ/WRITE access control seems to be a table-stakes feature in other MongoDB providers. Was surprised to see that with DO's managed MongoDB solution, even the db.createUser() command is not supported.

Please consider even supporting db.createUser() with READ role 🙏

Bobby Iliev

Kevin Yun quick update here on the READ role request, you can now create read only users for the Managed MongoDB clusters via the DigitalOcean API as described here:

> https://docs.digitalocean.com/products/databases/mongodb/how-to/manage-users-and-databases/