You are viewing a plain text version of this content. The canonical link for it is here.

Posted to user@couchdb.apache.org by Hank Knight <hk...@gmail.com> on 2014/01/08 20:06:20 UTC

CouchDB: Securing all PUT, POST, and DELETE Calls

I want to limit all PUT, POST and DELETE calls to users with
administrative privileges.

Re: CouchDB: Securing all PUT, POST, and DELETE Calls

Posted by Alexander Shorin <kx...@gmail.com>.

Just setup validate_doc_update[1] function that allows any writes only
for admins (_admin role or being  in admin section of security object)
.

http://docs.couchdb.org/en/latest/couchapp/ddocs.html#validate-document-update-functions
--
,,,^..^,,,

On Wed, Jan 8, 2014 at 11:06 PM, Hank Knight <hk...@gmail.com> wrote:
> I want to limit all PUT, POST and DELETE calls to users with
> administrative privileges.