You are viewing a plain text version of this content. The canonical link for it is here.

Posted to user@couchdb.apache.org by Ido Ran <id...@gmail.com> on 2011/11/10 16:59:40 UTC

Security Questions

1. Does couch_httpd_oauth means CouchDB support OAuth authentication as is,
without reverse proxy or anything else?
2. How can I secure the replication between two couches?

Thank you,
Ido

Re: Security Questions

Posted by Alexander Shorin <kx...@gmail.com>.

On Fri, Nov 11, 2011 at 8:54 PM, Ido Ran <id...@gmail.com> wrote:
> About securing replication, SSL only solve confidentiality, not authorization.
> How do I go about making sure only authenticated party can replicate?
>
> Thank you

You may gain auth by client SSL certificate.

--
,,,^..^,,,

>
> ב-10 בנוב 2011, בשעה 21:47, Alexander Shorin <kx...@gmail.com> כתב/ה:
>
>> On Thu, Nov 10, 2011 at 7:59 PM, Ido Ran <id...@gmail.com> wrote:
>>> 1. Does couch_httpd_oauth means CouchDB support OAuth authentication as is,
>>> without reverse proxy or anything else?
>>> 2. How can I secure the replication between two couches?
>>>
>>
>> 1. Yes.
>> 2. SSL, native or via proxy like nginx.
>>
>> --
>> ,,,^..^,,,
>

Re: Security Questions

Posted by Ido Ran <id...@gmail.com>.

About securing replication, SSL only solve confidentiality, not authorization. 
How do I go about making sure only authenticated party can replicate?

Thank you



ב-10 בנוב 2011, בשעה 21:47, Alexander Shorin <kx...@gmail.com> כתב/ה:

> On Thu, Nov 10, 2011 at 7:59 PM, Ido Ran <id...@gmail.com> wrote:
>> 1. Does couch_httpd_oauth means CouchDB support OAuth authentication as is,
>> without reverse proxy or anything else?
>> 2. How can I secure the replication between two couches?
>> 
> 
> 1. Yes.
> 2. SSL, native or via proxy like nginx.
> 
> --
> ,,,^..^,,,

Re: Security Questions

Posted by Ido Ran <id...@gmail.com>.

Hi,
Thanks for the answer.


On Thu, Nov 10, 2011 at 9:47 PM, Alexander Shorin <kx...@gmail.com> wrote:

> On Thu, Nov 10, 2011 at 7:59 PM, Ido Ran <id...@gmail.com> wrote:
> > 1. Does couch_httpd_oauth means CouchDB support OAuth authentication as
> is,
> > without reverse proxy or anything else?
> > 2. How can I secure the replication between two couches?
> >
>
> 1. Yes.
> 2. SSL, native or via proxy like nginx.
>
> --
> ,,,^..^,,,
>

Re: Security Questions

Posted by Alexander Shorin <kx...@gmail.com>.

On Thu, Nov 10, 2011 at 7:59 PM, Ido Ran <id...@gmail.com> wrote:
> 1. Does couch_httpd_oauth means CouchDB support OAuth authentication as is,
> without reverse proxy or anything else?
> 2. How can I secure the replication between two couches?
>

1. Yes.
2. SSL, native or via proxy like nginx.

--
,,,^..^,,,