You are viewing a plain text version of this content. The canonical link for it is here.
Posted to user@couchdb.apache.org by Johannes Schmidt <js...@t8d.de> on 2010/02/12 11:34:29 UTC
[admins] and [users] in local.ini
Hi all,
I have edited an admin user in local.ini's [admins] section and
everything works fine. However I'd like to have my app. requesting with
an *ordinary* user that is just able to create, read, and delete custom
documents but that is _not_ able to create a new database or read
config. documents etc. I have added a [users] section containing "myuser
= mysecret" - but this has no effect. Is such a distinction between
admins and users on HTTP auth. level possible?
Best regards,
Johannes
Re: [admins] and [users] in local.ini
Posted by Chris Anderson <jc...@apache.org>.
On Fri, Feb 12, 2010 at 11:05 AM, Johannes Schmidt <js...@t8d.de> wrote:
> Hi Brian,
> thnx for your help.
There is a screencast here which should help
http://www.youtube.com/watch?v=oHKvV3Nh-CI
>
> Brian Candler schrieb:
>>
>> What version are you running?
>>
>
> 0.10.0 - which is obv. not the latest version.
>>
>> With recent code there is a _users database. You can configure the name of
>> this database in the .ini file if you want to call it something else.
>> Then
>> create your users by PUTting to this, or more easily through futon.
>>
>> These users won't be able to create a new database (that's a server-level
>> admin function), and in trunk they cannot modify a design doc (that's a
>> database-level admin function). However they can still read design docs.
>> They can also read everything in the _users database, unless you block read
>> access to it explicitly.
>>
>> HTH,
>>
>
> Yes :) . Will try this after upgrade.
>
> Johannes
>>
>> Brian.
>>
>>
>
>
--
Chris Anderson
http://jchrisa.net
http://couch.io
Re: [admins] and [users] in local.ini
Posted by Johannes Schmidt <js...@t8d.de>.
Hi Brian,
thnx for your help.
Brian Candler schrieb:
>
> What version are you running?
>
0.10.0 - which is obv. not the latest version.
> With recent code there is a _users database. You can configure the name of
> this database in the .ini file if you want to call it something else. Then
> create your users by PUTting to this, or more easily through futon.
>
> These users won't be able to create a new database (that's a server-level
> admin function), and in trunk they cannot modify a design doc (that's a
> database-level admin function). However they can still read design docs.
> They can also read everything in the _users database, unless you block read
> access to it explicitly.
>
> HTH,
>
Yes :) . Will try this after upgrade.
Johannes
> Brian.
>
>
Re: [admins] and [users] in local.ini
Posted by Brian Candler <B....@pobox.com>.
On Fri, Feb 12, 2010 at 11:34:29AM +0100, Johannes Schmidt wrote:
> I have edited an admin user in local.ini's [admins] section and
> everything works fine. However I'd like to have my app. requesting
> with an *ordinary* user that is just able to create, read, and
> delete custom documents but that is _not_ able to create a new
> database or read config. documents etc. I have added a [users]
> section containing "myuser = mysecret" - but this has no effect. Is
> such a distinction between admins and users on HTTP auth. level
> possible?
What version are you running?
With recent code there is a _users database. You can configure the name of
this database in the .ini file if you want to call it something else. Then
create your users by PUTting to this, or more easily through futon.
These users won't be able to create a new database (that's a server-level
admin function), and in trunk they cannot modify a design doc (that's a
database-level admin function). However they can still read design docs.
They can also read everything in the _users database, unless you block read
access to it explicitly.
HTH,
Brian.