- CouchDB and PHP Web Development Beginner’s Guide
- Tim Juravich
- 142字
- 2021-08-13 18:22:54
Time for action — anonymously accessing the _users database
Let's go through a quick exercise of calling a curl statement to the _users database to see why it's important to secure our data.
- Open Terminal.
- Run the following command, replacing
your_usernamewith the username of the server admin that you just created.curl localhost:5984/_users/org.couchdb.user:your_username | python -mjson.tool - Terminal will respond with something similar to:
{ "_id": "org.couchdb.user:your_username", "_rev": "1-b9af54a7cdc392c2c298591f0dcd81f3", "name": "your_username", "password_sha": "3bc7d6d86da6lfed6d4d82e1e4d1c3ca587aecc8", "roles": [], "salt": "9812acc4866acdec35c903f0cc072c1d", "type": "user" }
What just happened?
You used Terminal to create a curl request to read the document containing your server admin's data. The passwords in the database are encrypted, but it's possible that someone could still unencrypt the password or use the usernames of the users against them. With that in mind, let's secure the database so that only administrators can access this database.
推薦閱讀
- Mastering Visual Studio 2017
- Learning ROS for Robotics Programming(Second Edition)
- Mastering RabbitMQ
- Dynamics 365 Application Development
- Python入門很簡單
- MongoDB for Java Developers
- Learning Neo4j 3.x(Second Edition)
- Go并發(fā)編程實戰(zhàn)
- ASP.NET Core 2 Fundamentals
- Python機器學習算法: 原理、實現(xiàn)與案例
- 搞定J2EE:Struts+Spring+Hibernate整合詳解與典型案例
- Mastering Elasticsearch(Second Edition)
- Managing Microsoft Hybrid Clouds
- Python商務數(shù)據(jù)分析(微課版)
- After Effects CC案例設計與經(jīng)典插件(視頻教學版)