Secure CouchDB NoSQL


show more Securing CouchDB provides you with in-depth training on Developer. Taught by Joseph LeBlanc as part of the Up and Running with NoSQL Databases show less
please wait ...

Securing CouchDB

When a fresh copy of CouchDB is started, there is no authentication in place; anyone can access any part of it through HTTP. When you're in development, this is very handy. However, this is almost never acceptable for production use. Fortunately, CouchDB allows you to lock down individual databases as well the whole server. First, let's create an admin. In the lower right-hand part of the screen you'll notice it says, Welcome to Admin Party! Everyone is admin. Fix this. Let's do what it suggests and click Fix this, type in admin as the Username, and then admin as the Password.

We've created an admin but we would still like to lock down the database. Anonymous users can still read from and write to the database. Click the Configuration link. There is a property called require_valid_ user, and it's currently set to false. Let's double-click and set that to true. Once you click the check, CouchDB requires a valid user for every operation. Let's test ...

Securing CouchDB
Video duration: 1m 48s 56m 57s Intermediate

Viewers:

Securing CouchDB provides you with in-depth training on Developer. Taught by Joseph LeBlanc as part of the Up and Running with NoSQL Databases

please wait ...