[Change]: Run browsertrix with a non-admin mongodb user #3146
Description
Browsertrix Host
Self-Hosted
What change would you like to see?
I would like to be able to run browsertrix with a non-admin mongodb user.
As of commit a128ebe it is no longer possible to run browsertrix configured with a non-admin mongodb user.
We manage mongodb using the mongodb community operator and used to be able to run with an app-scoped user:
apiVersion: mongodbcommunity.mongodb.com/v1
kind: MongoDBCommunity
metadata:
name: mongodb-browsertrix
namespace: mongodb
spec:
type: ReplicaSet
members: 3
arbiters: 0
version: "7.0.29"
security:
authentication:
modes: ["SCRAM"]
users:
# Global admin user
- name: root
db: admin
passwordSecretRef:
name: mongodb-browsertrix
roles:
- name: root
db: admin
scramCredentialsSecretName: mongodb-browsertrix
# App-scoped user for the browsertrixcloud DB
- name: browsertrix
db: browsertrixcloud
passwordSecretRef:
name: mongodb-browsertrix-app
roles:
- name: dbOwner
db: browsertrixcloud
Our mongodb connection string used to be
mongodb://browsertrix:<password>@mongohost/browsertrixcloud
and now has to be
mongodb://root:<password>@mongohost/browsertrixcloud?authMechanism=SCRAM-SHA-256&authSource=admin
Additional details
No response