…omments to guide further additions and removal of redundant code
… underscores, like _session or _utils
API_KEY enabled authentication and filtering (see lib/api.js) - uses ?api_key= get parameter - currently API_KEY access prevents _* access and PUT/COPY/DELETE of design docs - basic idea is dev gets a username/password account for Basic Auth, and an api_key we create a vio_ shadow user for that user account which has the same permissions, which is used for api_key enabled requests - see code for more detailed description createuser.js script - note: requires config.salt, config.iterations and config.userDB (needs to exist) - takes username, password as arguments - creates all necessary users/dbs/documents for a Vertex.IO user (db name currently is hardcoded to 'testdb') - mainly the actual user, vio shadow user, their db, locks their db by role, creates vio related user doc which includes api_key basic tests! - basic api_key based authentication tests in tests/app.test.js - to run install expresso (npm install express) - run as 'expresso app.test.js'
CouchDB proxy under /db URI Usage monitoring on a per db basis, logged periodically to a configurable couchdb database Some skeleton files for implementing an https expressjs server