Join Joseph LeBlanc for an in-depth discussion in this video Securing CouchDB, part of Up and Running with NoSQL Databases.
- View Offline
When a fresh copy of CouchDB is started, there is no authentication in place; anyone can …access any part of it through HTTP. …When you're in development, this is very handy. …However, this is almost never acceptable for production use. …Fortunately, CouchDB allows you to lock down individual databases as well the whole server. …First, let's create an admin. …In the lower right-hand part of the screen you'll notice it says, Welcome to Admin Party! …Everyone is admin. Fix this. …Let's do what it suggests and click Fix this, type in admin as the Username, and then admin as the Password.…
We've created an admin but we would still like to lock down the database. Anonymous …users can still read from and write to the database. …Click the Configuration link. …There is a property called require_valid_ user, and it's currently set to false. …Let's double-click and set that to true. …Once you click the check, CouchDB requires a valid user for every operation. …Let's test how this works. …I'm going to go to the Command line to use curl. …
- What is NoSQL?
- Installing CouchDB on Mac, Windows, and Linux
- Storing data
- Nesting document data
- Specifying search criteria
- Reducing data
- Attaching and retrieving images
- Deploying applications
- Securing CouchDB
- Understanding the CAP theorem