Atlas
- A brief description of what you are looking to do
- How you think this will help
- Why this matters to you
455 results found
-
List user id in access screen, needed for project owner id in when setting up a project inpulumi
As title. I want to easily find user IDs from teh Atlas UI
1 vote -
CORS on the Atlas API
The Atlas API does not yet support CORS. Without CORS, calling the API from within a browser, using a React Client, for example, fails the 'preflight checks'.
"...has been blocked by CORS policy: Response to preflight request doesn't pass access control check: No 'Access-Control-Allow-Origin' header is present on the requested resource...."
If the Atlas API could add the 'Access-Control-Allow-Origin: *in the header response, then browsers would permit the API to be called.
Note: for the pre-flight check, the browsers call the OPTION method.
1 vote -
Set Customer Managed Key (CMK) for wiredtiger encryption at the Organization level
For Organizations with a large number of projects, it is cumbersome to rotate keys for every project. If there was an option to set a default at the Organization level, and maybe override by CMKs set at project level, it will reduce the effort of key rotation for every project.
1 vote -
Hello, I had a superb consultative experience with Colin Phillips. He assisted me with understanding support options for a website database
Colin Phillips provided superb and outstanding help to me with the next steps for realizing my dream project.
With Gratitude, Amilcar1 vote -
Sign Up Process Security
I have recently signed up for a developer account. I have used a Microsoft email address during registration. As soon as I submitted it, I have received an account login MFA message from Microsoft indicating that someone is trying to sign into Microsoft with it. I obviously used it to just register with Atlas as an ordinary email address. Being security savvy, it indicated a red flag. There is a potential that your registration system is compromised (hacked) by a malicious actor. Please forward this message to a security team.
1 vote -
Code support
Your website is a monster where is very difficult to get the useful information.
I wanted to use Realm to use a mongo cluster and after hours trying I give up.
I couldn't connect to the cluster after I created serveral ids (app, api, another api id, ...)Solution: Let's say I have a single cluster and a single realm app created.
Just give me the code with all the ids necessary.In my case I wanted to run it from the browser.
This is the code I tried to execute:
…const app = new Realm.App({ id: 'tradeapp-bozmd' }); const1 vote -
Atlas project capacity should be discoverable
Atlas project capacity should be discoverable. Based on documentation, it seems project capacity is dependent on various factors and can be arbitrarily increased via support request. We currently do not know how many clusters/nodes we have available to deploy in a given project and that is critical information to inform planning at scale.
5 votes -
Retrieve latest/max oplog timestamp via the Atlas Administration API
At the moment the latest/max oplog timestamp can be retrieved via the Atlas UI in the backups section for point in time restores. This feedback post is to make this information available as part of the atlas administration api.
For example, in the UI it states:
You can only restore up to this oplog timestamp: 1692580549 and this increment: 1.
Would be good to have this value available to be retrieved via the API for restores requiring oplog timestamp values in this format.
3 votes -
Enable database users separate read/write permissions based on cluster
We have multiple clusters in the same project, and we need to limit write access to certain CLUSTERS while leaving read only access to any other cluster. The problem is that we cannot do this by DATABASE name as there are many of them, as well as dynamically addition of new ones in clusters, so it will become obsolete and very hard to maintain.
Trying to use the restriction does not help as it limits all access, including read only, to those clusters.
What we'd like to see is that we can limit write access by cluster (not database/collection) and…3 votes -
Integrated Benchmark utility for mongodb
I would like to request a mongodb utility which can do benchmark tests and can be used by developers and DBA to test mongodb for release changes, application code changes etc. The utlity should be able to simulate multiple users and produce different types of workloads (like reads, updates, deletes, inserts etc). This would need to be similar to other nosql benchmark tool like asbench used in aerospike nosql database.
Link is : https://docs.aerospike.com/tools/asbench4 votes -
Hyperlink to "all cases" that's under the "create new case" link
To access the support portal from the projects page:
- Navigate to Support to the left side of the page
- Click on Visit Support Portal button under Request Support
It will be easier to navigate if a hyper link of "all cases" can be added to "create new case" from the "get help" drop down as in screenshot attached.
2 votes -
LDAP Users shouldn't be successfully authenticated if not authorized
Today, if you login with proper LDAP credentials to an Atlas cluster, you are authenticated into that cluster, even if you are not authorized to have access. This is not at all how databases should work, nor is it how most databases do work today. If a user is not authorized, that connection should fail immediately.
Allowing successful authentication, even when not authorized, can increase the security vector for ddos attempts as well as causes confusion when successful attempts are logged, even though the user was not authorized to see data.
Please reject any non-authorized user from connecting to an…
4 votes -
Monospace font for Atlas project user creation fields
When you start a new project using Atlas, a username and password are suggested. The username and password fields use a font with almost identical lowercase L and capital i.
My suggestion is to use a monospace font in those fields for disambiguation.
I use a password manager on my phone (as do, I imagine, many others), which means it’s very annoying to have to figure out if a character is an l or an I on the computer every time I have to copy down info for a new project.
1 vote -
Add a command to set cluster to read only mode in MongoDB
Relational databases (oracle, mysql, postgres) provide a single command to change a database to read only mode. e.g. alter system set database read only; This is often used to enable read only access to a cluster that is in process of being upgraded, or provide a look back to verify functionality or setup post upgrade. MongoDB should implement such a feature.
1 vote -
Cluster configuration protection
I would like to request adding a configuration protection feature in MongoDB Atlas. In our client's scenario, the DBA must manage multiple clusters simultaneously, posing the risk of accidental misconfigurations. Therefore, the client's feedback is that hope MongoDB Atlas can have the option to enable configuration protection so that any adjustments or changes require disabling the configuration protection first
1 vote -
UUID Schema Validation
It would be very handy to have the ability to specify a schema validator using bson type UUID (binData subtype 4) instead of the more generic binData subtype 0.
11 votes -
Add UUID generation to Atlas Functions
Atlas Functions have a
utils.cryptolibrary that offers some basic cryptography functions. One of those should be the moderncrypto.randomUUID()that is now standard in ECMAScript. Currently, Atlas Functions cannot generate a UUID without resorting to third-party dependencies. I prefer using full UUIDs over Mongo's proprietary ObjectID.1 vote -
Improve Hashing Algorithm Choices in Atlas Functions
Atlas Functions have a
utils.cryptoAPI that offers hashing. However, the available hashes are embarrassing: SHA1, MD5, and SHA256. I understand that not everything we hash might need security and there's a speed/security tradeoff. But not even OFFERING a cryptographically-secure modern hashing algorithm in 2023 is nuts. People shouldn't have to import third party dependencies just to get best-practice hashing algorithms. Please improve the algorithm choices.1 vote -
I would like to compact to oplog myself instead of opening cases to resize it
To compact my oplog and reclaim 300GB of disk space right after I finisihed migrating a database to Atlas using mongomirror, I had to open a support case. With that we were able to reduce our cluster tier thanks to lowering the disk tier (Azure deployment)
It would be nice to do it myself to be faster without opening a case with severity 4 that will take me at least 2 days to accomplish that. Also, I assume that people without a subscription can't do it since you have to open a case which is exclusive only if you have…
6 votes -
Activate bypass saml only for select users
We have recently activated SAML SSO on our Organization and we would like to only have 1 user that is able to bypass SSO as like a "break the glass" user in case our IDP fails. It would be ideal that not every user is able to use the bypass url.
Currently any users can use the bypass sso url
6 votes
.png){kind=link}
- Don't see your idea?