You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Security and Authentication is brilliantly simple with CouchDB. _users is a special database of users (except for sys admin). Only sys admin and the owner of the record can query a record in the _users database (table).
To authenticate a user, simply query _users for the user name, passing the users credentials (name and pwd). If you get the record back, they are authenticated.
Anyone can create a record in this table, but users cannot create roles on their own record (you cannot grant access to a database to yourself)
Since the _users record is JSON, you can add additional structures to the dictionary. I am simply storing a list of MVPs (uuid) that a user has permission to query in the _user record, then when they validate themselves, I can display the MVPs they can select from when they now run a query for data.
Try it out with any of the dummy users I created in 5985.
Possibly Included:
The text was updated successfully, but these errors were encountered: