开发者

Serverside - CouchDB only

问答 作者:

Couple days ago, I stumbled to CouchDB. I liked it immediately, one of the reason 开发者_如何学Pythonwas because it's REST! So, next day, I was thinking about security. I saw there is /_session, for authentication.

But still, there is one major thing I'm thinking about, and that's filtering requests and data. So, lets say /users/ gets list of all users. If ROLE is ADMIN, then it should get all data, but if ROLE is something else, then lets say it should only send username and email, but not other data. Is this possible with CouchDB?

Thanks!

Yes, it is possible to do this. List and Show functions have access to information about the user's request, so if they are authenticated as an Administrator you can change the output of the request.

See:

  1. http://guide.couchdb.org/draft/transforming.html#arguments
  2. http://wiki.apache.org/couchdb/Formatting_with_Show_and_List
  3. http://blog.couchone.com/post/1027100082/whats-new-in-couchdb-1-0-part-4-securityn-stuff

继续阅读:javascript

更多精彩内容

0

上一篇:

下一篇:

精彩评论

暂无评论...
登录 注册
Qedev.com
验证码 换一张
取 消

最新问答

问答排行榜

法律声明:本站内容均为网友上传,网站举办方负责审核和监督,

如存在版权或非法内容,欢迎举报,我们将尽快予以删除。

Copyright © 2018-2020 开发者. All rights reserved.

Powered by 开发者

ICP备案号: 京ICP备10032868号-9