db.changeUserPassword()

~~On this page~~本页内容

~~Definition~~定义
~~Required Access~~所需访问权限
~~Behavior~~行为
~~Example~~实例

Definition定义

db.changeUserPassword(username, password)

~~Updates a user's password. Run the method in the database where the user is defined, i.e. the database you created the user.~~更新用户的密码。在定义用户的数据库中运行该方法，即created用户的数据库。

Important

mongosh Method

This page documents a mongosh method. This is not the documentation for database commands or language-specific drivers, such as Node.js.

For the database command, see the updateUser command.

For MongoDB API drivers, refer to the language-specific MongoDB driver documentation.

For the legacy mongo shell documentation, refer to the documentation for the corresponding MongoDB Server release:

mongo shell v4.4

~~Parameter~~参数	~~Type~~类型	~~Description~~描述
`username`	string	~~The name of the user whose password you wish to change.~~要更改其密码的用户的名称。
`password`	string	~~The user's password. The value can be either:~~ 用户的密码。该值可以是： ~~the user's password in cleartext string, or~~明文字符串中的用户密码，或 `passwordPrompt()` ~~to prompt for the user's password.~~以提示输入用户的密码。 Tip Starting in version 4.2 of the `mongo` shell, you can use the `passwordPrompt()` method in conjunction with various user authentication/management methods/commands to prompt for the password instead of specifying the password directly in the method/command call. 从`mongo`shell的4.2版本开始，您可以将`passwordPrompt()`方法与各种用户身份验证/管理方法/命令结合使用来提示输入密码，而不是直接在方法/命令调用中指定密码。~~However, you can still specify the password directly as you would with earlier versions of the `mongo` shell.~~ 但是，您仍然可以像使用早期版本的`mongo`shell一样直接指定密码。
`writeConcern`	document	~~Optional.~~可选的。~~The level of write concern for the operation. See Write Concern Specification.~~ 操作的写入关注级别。请参阅写入关注规范。

Required Access所需访问权限

~~To modify the password of another user on a database, you must have the changePassword action on that database.~~若要修改数据库中其他用户的密码，必须对该数据库执行changePassword操作。

Behavior行为

Warning

~~By default, db.changeUserPassword() sends all specified data to the MongoDB instance in cleartext, even if using passwordPrompt().~~ 默认情况下，db.changeUserPassword()以明文形式将所有指定的数据发送到MongoDB实例，即使使用passwordPrompt()也是如此。~~Use TLS transport encryption to protect communications between clients and the server, including the password sent by db.changeUserPassword().~~ 使用TLS传输加密来保护客户端和服务器之间的通信，包括db.changeUserPassword()发送的密码。~~For instructions on enabling TLS transport encryption, see Configure mongod and mongos for TLS/SSL.~~有关启用TLS传输加密的说明，请参阅为TLS/SSL配置mongod和mongos。

~~MongoDB does not store the password in cleartext. The password is only vulnerable in transit between the client and the server, and only if TLS transport encryption is not enabled.~~MongoDB不以明文形式存储密码。只有在客户端和服务器之间的传输过程中，并且只有在未启用TLS传输加密的情况下，密码才易受攻击。

Example实例

~~The following operation changes the password of the user named accountUser in the products database to SOh3TbYhx8ypJPxmt1oOfL:~~以下操作将产品数据库中名为accountUser的用户的密码更改为SOh3TbYhx8ypJPxmt1oOfL：

Tip

Starting in version 4.2 of the mongo shell, you can use the passwordPrompt() method in conjunction with various user authentication/management methods/commands to prompt for the password instead of specifying the password directly in the method/command call. 从mongoshell的4.2版本开始，您可以将passwordPrompt()方法与各种用户身份验证/管理方法/命令结合使用来提示输入密码，而不是直接在方法/命令调用中指定密码。~~However, you can still specify the password directly as you would with earlier versions of the mongo shell.~~但是，您仍然可以像使用早期版本的mongoshell一样直接指定密码。

use products
db.changeUserPassword("accountUser", passwordPrompt())

~~When prompted in mongosh for the password, enter the new password.~~当在mongosh中提示输入密码时，请输入新密码。

~~You can also pass the new password directly to db.changeUserPassword():~~您也可以将新密码直接传递给db.changeUserPassword()：

use products
db.changeUserPassword("accountUser", "SOh3TbYhx8ypJPxmt1oOfL")

← db.auth() db.createUser() →