CouchDB Authorization Logic?

Question

CouchDB Authorization Logic?

I read http://guide.couchdb.org/draft/security.html and

and previous question Database-based authorization of CouchDB as well as http://wiki.apache.org/couchdb/Security_Features_Overview

I am currently using Apache CouchDB 1.2.0 and through futon add admin result to add user in _users, for example

_id
org.couchdb.user:stackoverflow
 _rev 
1-b9f223532b662d4ac52d14082d81e6a5

name
stackoverflow

password
null

roles
[ ]

type
user

So, the first question is why the administrator is being added as a type user, not an admin. These are admin users, as they can do anything in any database, and the role is empty, but I protected the _users document with

["admin"]

as the only members, and only admins can access this (even if their role in the _users document is empty).

"" , futon "signup" . db.

, . , - ?

db , .

(

 " admins" : {
   "names" : ["guru"],
   "roles" : ["boss"]
  },
  "readers" : {
    "names" : ["guru"],
   "roles" : ["boss"]
  }
}

stackoverflow .

, , , , . - _users, ( ), .

, : - futon, admin _users CouchDB , ? - WITHOUT, ( futon direct HTTP Request), _users. / ? - ( CouchDB Docs) , , , , ?

, , , CouchDB http://www.iriscouch.com/, , , , . "", admin _users?

+5

couchdb couchdb-futon

devnull 28 . '12 15:22

1

JasonSmith · Accepted Answer · 2012-04-29T00:36:21+0000

, ?

CouchDB Windows Active Directory Unix NIS LDAP: "" , (, "" Windows "root" Unix) , ( local.ini).

- , .

"_admin" ?

, ( "_admin") , "".

?

( local.ini, "" Futon, " Admin Admin" ), admin. , ( Windows Administrator Unix root).

CouchDB , . , - , . "", "".

: futon, admin _users CouchDB , ?

Futon

( )
"" . GET /_config/admins/the_username, . ( Futon.)

, CouchDB , , . , "" .

Iris

, CouchDB , . Iris Couch CouchDB. , Iris Couch, CouchDB. .

CouchDB Authorization Logic?

, ?

"_admin" ?

?

: futon, admin _users CouchDB , ?

Iris

More articles: