As part of our auditing due diligence, I need to ensure the Meteor connection has write-only access to a specific MongoDB collection.
I was hoping I could assign Meteor a user account(/role) with restricted privileges in MongoDB - however I can’t find anywhere in the Meteor documentation that lists the required grants. (Is everyone simply using an
Our fallback, would be to isolate Meteor to it’s own MongoDB, however this isn’t ideal.
Can someone point me to where the required privileges/grants are documented?