[lively-kernel] CouchDB authentification and permissions

Roeder, Marko Marko.Roeder at student.hpi.uni-potsdam.de
Fri Nov 18 17:45:32 CET 2011

Hi, all -

For the last couple of days I have been working on a permission system for our CouchDB and today I finally put it to action.
While prior to this day everyone was getting admin rights and therefore could manage the whole CouchDB installation, this has now been restricted to only a few.

What really change from a users point of view is the following:

Generally a Lively Kernel user cannot delete or compact databases anymore. Instead this is only possible for databases (s)he owns.
Ownership is automatically established when creating a new database and can be modified using the _security document but only by a user that already is an admin/owner of a database.
Database owners are also the only one's who are allowed to add/modify/delete design documents from a database.

Following this change, every database that already has been created has to get at least one owner so that it can be managed (e.g. delete) by a Lively Kernel user. Knowing a bit about who is/has been working on which project, I already assigned users to most of the databases so that everything should be fine.

Whoever is running into problems using our CouchDB is welcomed to drop me a line - either through the mailing list or directly to my email address.


	- Marko

More information about the lively-kernel mailing list