CouchDb

Information about CouchDb and project status

emjy

security:

im testing simple xmlhttp(ajax) easy html-javascript against couchdb and they work smoothly any thoughts about couchdb unauthorized "sql-cdb" injections ?

joseluis

last updated 1 year ago #

Comments

Currently all security is expected to be handled at the application server level, with the CouchDb server sitting behind a firewall. For admin/development purposes direct access by AJAX/web clients should be possible though. In fact I need such an application to built that can look into Couch databases for debugging purposes. (CouchPeek is a good name, anyone want to create it?).

A full security model is due much later in the project.

damienkatz 1 year ago # reply

what i meant is that i used cfobject (xmkhttp) calls from a second tier coldfusion server on another domain outside the couchdb(8888)server but just for fun

thanks for your answer

1 year ago # reply

Add a comment

you're not logged in