Hi Nick, the revolution comes with a new rewrite function (path list is not a static, but a function that can return path, status code, body, headers based on the request object en user environment. This enable you to make a router, firewall to allow jsut certain ip-range etc.
The code was committed in November by Alexander Shorin <[email protected]> , but I don't know when to expect a release (1.7) What I can say after testing it, is that it is a totally new world for couchapps johs > On 15. apr. 2016, at 17.10, Nick <[email protected]> wrote: > > I've been researching how one should secure a "couch-served app", in > particular allowing the user to log in but disallowing anonymous reads and > writes. > > Seems like the most useful information I can find is five years old: > > https://stackoverflow.com/questions/7389379/how-does-a-user-login-to-a-couchapp-that-has-a-reader-role-defined > > Has there been any advance since then, or is a "welcome mat" DB still the > (only) way to do it within couchdb without adding a proxy? > > Cheers! > > Nick >
