couchdb-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Apache Wiki <wikidi...@apache.org>
Subject [Couchdb Wiki] Trivial Update of "Security_Features_Overview" by MattAdams
Date Wed, 23 Feb 2011 18:07:20 GMT
Dear Wiki user,

You have subscribed to a wiki page or wiki category on "Couchdb Wiki" for change notification.

The "Security_Features_Overview" page has been changed by MattAdams.
http://wiki.apache.org/couchdb/Security_Features_Overview?action=diff&rev1=17&rev2=18

--------------------------------------------------

  
  The "_id" attribute value must be prefixed with the string "org.couchdb.user:" and the rest
must match the value of the attribute "name". The roles attribute must be an array of roles
(and each role is a string). The "password_sha" attribute is an hexadecimal representation
of the SHA-1 hash computed over a string that matches the user password concatenated with
a salt (ideally a random string). The salt attribute is the hexadecimal representation of
the salt used to generate the user's password hash.
  
- '''Note:''' you will need to use the [[https://github.com/apache/couchdb/blob/trunk/share/www/script/sha1.js][sha1.js
implementation of SHA-1]] to generate `password_sha`.  The SHA-1 hex digest output by Open``SSL
is not compatible with Erlang's crypto:sha/1 -- MattAdams
+ '''Note:''' you will need to use the [[https://github.com/apache/couchdb/blob/trunk/share/www/script/sha1.js|sha1.js
implementation of SHA-1]] to generate `password_sha`.  The SHA-1 hex digest output by Open``SSL
is not compatible with Erlang's crypto:sha/1 -- MattAdams
  
  Some rules regarding user documents:
  

Mime
View raw message