Return-Path: Delivered-To: apmail-couchdb-user-archive@www.apache.org Received: (qmail 3713 invoked from network); 19 Feb 2010 09:39:29 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.3) by minotaur.apache.org with SMTP; 19 Feb 2010 09:39:29 -0000 Received: (qmail 13528 invoked by uid 500); 19 Feb 2010 09:39:28 -0000 Delivered-To: apmail-couchdb-user-archive@couchdb.apache.org Received: (qmail 13457 invoked by uid 500); 19 Feb 2010 09:39:27 -0000 Mailing-List: contact user-help@couchdb.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: user@couchdb.apache.org Delivered-To: mailing list user@couchdb.apache.org Received: (qmail 13447 invoked by uid 99); 19 Feb 2010 09:39:27 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 19 Feb 2010 09:39:27 +0000 X-ASF-Spam-Status: No, hits=-0.0 required=10.0 tests=SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (nike.apache.org: local policy) Received: from [217.110.7.51] (HELO mail.sourcegarden.de) (217.110.7.51) by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 19 Feb 2010 09:39:19 +0000 Received: from [192.168.0.148] (unknown [192.168.0.148]) by mail.sourcegarden.de (Postfix) with ESMTP id BA8921F76A9 for ; Fri, 19 Feb 2010 10:38:52 +0100 (CET) Message-Id: <9364CE61-F388-4498-9419-F85CFCEEC80A@sourcegarden.de> From: Mario Scheliga To: user@couchdb.apache.org Content-Type: text/plain; charset=US-ASCII; format=flowed; delsp=yes Content-Transfer-Encoding: 7bit Mime-Version: 1.0 (Apple Message framework v936) Subject: Accessing Views - Security Date: Fri, 19 Feb 2010 10:38:52 +0100 X-Mailer: Apple Mail (2.936) X-rccsoftware-MailScanner-Information: Please contact the ISP for more information X-rccsoftware-MailScanner-ID: BA8921F76A9.67D80 X-rccsoftware-MailScanner: Found to be clean X-rccsoftware-MailScanner-SpamCheck: not spam, SpamAssassin (nicht zwischen gespeichert, Wertung=-4.399, benoetigt 6, autolearn=not spam, ALL_TRUSTED -1.80, BAYES_00 -2.60) X-rccsoftware-MailScanner-From: mario@sourcegarden.de X-Virus-Checked: Checked by ClamAV on apache.org X-Old-Spam-Status: No Hi Everyone, i am just thinking about some security issues with couchdb. I just want to adjust the access to stored Data like in ACLs and how would you do this if couchdb runs on different clients. Thinking about a Groupware Project with clientside-persistence. 1. encrypt/decrypt fields in couchdb-docs? (with certificates or something like that 2. on a server i could hide some urlparts by using a proxy, so the user have to use my show,list,_update functions, where i can implement my acl logic, but how is this done one a client site environment, where the user has full-access to the couchdb-instance how is that done right? greetz mario -- Sourcegarden GmbH HR: B-104357 Steuernummer: 37/167/21214 USt-ID: DE814784953 Geschaeftsfuehrer: Mario Scheliga, Rene Otto Bank: Deutsche Bank, BLZ: 10070024, KTO: 0810929 Schoenhauser Allee 51, 10437 Berlin