[GitHub] [couchdb] jan-scorl edited a comment on issue #2861: Can't create a user as a non-admin

[GitBox <gi...@apache.org>]

jan-scorl edited a comment on issue #2861:
URL: https://github.com/apache/couchdb/issues/2861#issuecomment-623095484


   Thank you for the quick response @wohali .
   
   What was the reasoning behind changing this and only allowing admins to create new users by default? 
   
   I also saw that there is a new setting called `users_db_security_editable`, which defaults to `false`. The docs say the following: 
   > When this configuration setting is set to false, reject any attempts to modify the _users database security object. Modification of this object is deprecated in 3.x and will be completely disallowed in CouchDB 4.x.
   
   If I interpret this correctly, editing the `_users/_security` object will not be possible anymore in the future. Since it defaults to `admins`, this will be the only option for creating users then. Given these changes, what would you say are the best practices for creating users going forward? 
   
   I liked CouchDB, because the http API was built-in. Since I can't hardcode admin credentials into the client, I will need a middleman API then, which acts as an admin during user creation. Is that how you intend user creation to work in the future? 


----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

For queries about this service, please contact Infrastructure at:
users@infra.apache.org