Here is a summary of the more important privileges associated with create, read, update, and delete operations:
- find: Allows the role to run database commands such as aggregate(), find(), group(), count(), and mapReduce().
- insert: Allows the role to perform the insert() and create() database commands (and their equivalents). It should be noted that when using the $out aggregation pipeline stage operator, or mapReduce(), this privilege is needed as well.
- remove: Allows the role to perform the delete() command. In addition, certain commands require this in secondary stages (for example, db.collection.findAndModify()), as well as when using the $out aggregation pipeline stage operator, or mapReduce().
- update: Allows ...